GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
78 advisories
Filter by severity
phpIPAM version 1.5.1 contains a vulnerability where an attacker can bypass the IP block...
Moderate
Unreviewed
CVE-2024-0787
was published
Nov 15, 2024
An insufficient entropy vulnerability in the SecuSUITE Secure Client Authentication (SCA) Server...
Moderate
Unreviewed
CVE-2024-51720
was published
Nov 12, 2024
SAP NetWeaver AS Java allows an unauthenticated attacker to brute force the login functionality...
Moderate
Unreviewed
CVE-2024-47592
was published
Nov 12, 2024
A JSON Injection vulnerability exists in the `mintplex-labs/anything-llm` application,...
Moderate
Unreviewed
CVE-2024-3102
was published
Jun 6, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information...
Moderate
Unreviewed
CVE-2024-5682
was published
Sep 18, 2024
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive...
Moderate
Unreviewed
CVE-2024-45589
was published
Sep 5, 2024
Dell RecoverPoint for Virtual Machines 5.3.x contains a brute force/dictionary attack...
Moderate
Unreviewed
CVE-2024-22425
was published
Feb 16, 2024
A vulnerability has been identified in Location Intelligence family (All versions < V4.4)....
Moderate
Unreviewed
CVE-2024-41682
was published
Aug 13, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 uses an inadequate account lockout...
Moderate
Unreviewed
CVE-2024-25031
was published
Jun 29, 2024
A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that
if exploited allows a...
Moderate
Unreviewed
CVE-2024-28022
was published
Jun 11, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in wpdevart Contact Form...
Moderate
Unreviewed
CVE-2024-35747
was published
Jun 10, 2024
Improper restriction of excessive authentication attempts with two factor authentication methods...
Moderate
Unreviewed
CVE-2024-28833
was published
Jun 10, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Nitin Rathod WP Forms...
Moderate
Unreviewed
CVE-2023-48276
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Contact...
Moderate
Unreviewed
CVE-2023-48318
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in 10Web Form Builder...
Moderate
Unreviewed
CVE-2023-48290
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha...
Moderate
Unreviewed
CVE-2023-48745
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Forge12 Interactive...
Moderate
Unreviewed
CVE-2023-45009
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Devnath verma WP...
Moderate
Unreviewed
CVE-2023-44235
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WPPlugins – WordPress...
Moderate
Unreviewed
CVE-2023-34001
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Brainstorm Force...
Moderate
Unreviewed
CVE-2023-23730
was published
Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Appointment...
Moderate
Unreviewed
CVE-2024-32720
was published
May 17, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Metagauss ProfileGrid...
Moderate
Unreviewed
CVE-2024-32774
was published
May 17, 2024
KioWare for Windows (versions all through 8.35) allows to brute force the PIN number, which...
Moderate
Unreviewed
CVE-2024-3461
was published
May 14, 2024
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by...
Moderate
Unreviewed
CVE-2022-44022
was published
Oct 30, 2022
PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by...
Moderate
Unreviewed
CVE-2022-44023
was published
Oct 30, 2022
ProTip!
Advisories are also available from the
GraphQL API