GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
311 advisories
Filter by severity
This vulnerability exists in the Wave 2.0 due to missing restrictions for excessive failed...
Critical
Unreviewed
CVE-2024-51558
was published
Nov 4, 2024
A lack of rate limiting in the OTP validation component of Digitory Multi Channel Integrated POS...
Critical
Unreviewed
CVE-2024-48143
was published
Oct 24, 2024
In Progress® Telerik® Report Server versions prior to 2024 Q3 (10.2.24.806), a credential...
High
Unreviewed
CVE-2024-7292
was published
Oct 9, 2024
This vulnerability exists in Shilpi Client Dashboard due to missing restrictions for incorrect...
Critical
Unreviewed
CVE-2024-47656
was published
Oct 4, 2024
A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code...
Critical
Unreviewed
CVE-2024-41276
was published
Oct 1, 2024
This vulnerability exists in Apex Softcell LD Geo due to missing restrictions for excessive...
Critical
Unreviewed
CVE-2024-47088
was published
Sep 19, 2024
An issue was discovered in Bravura Security Fabric versions 12.3.x before 12.3.5.32784, 12.4.x...
Critical
Unreviewed
CVE-2024-45523
was published
Sep 18, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information...
Moderate
Unreviewed
CVE-2024-5682
was published
Sep 18, 2024
Keycloak Services has a potential bypass of brute force protection
Moderate
CVE-2024-4629
was published
for
org.keycloak:keycloak-services
(Maven)
Sep 17, 2024
This vulnerability exists in Reedos aiM-Star version 2.0.1 due to missing restrictions for...
Critical
Unreviewed
CVE-2024-45790
was published
Sep 11, 2024
An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0...
High
Unreviewed
CVE-2024-45327
was published
Sep 11, 2024
An improper restriction of excessive authentication attempts vulnerability has been reported to...
Low
Unreviewed
CVE-2024-32771
was published
Sep 6, 2024
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive...
Moderate
Unreviewed
CVE-2024-45589
was published
Sep 5, 2024
Windmill HTTP Request users.rs excessive authentication in github.com/windmill-labs/windmill
Moderate
CVE-2024-8462
was published
for
github.com/windmill-labs/windmill
(Go)
Sep 5, 2024
A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout...
High
Unreviewed
CVE-2021-22530
was published
Aug 28, 2024
Pluck CMS 4.7.18 does not restrict failed login attempts, allowing attackers to execute a brute...
Critical
Unreviewed
CVE-2024-43042
was published
Aug 16, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions...
Critical
Unreviewed
CVE-2024-42466
was published
Aug 16, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions...
Critical
Unreviewed
CVE-2024-42465
was published
Aug 16, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
High
Unreviewed
CVE-2024-39398
was published
Aug 14, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-41904
was published
Aug 13, 2024
A vulnerability has been identified in Location Intelligence family (All versions < V4.4)....
Moderate
Unreviewed
CVE-2024-41682
was published
Aug 13, 2024
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000...
Critical
Unreviewed
CVE-2024-39225
was published
Aug 6, 2024
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly...
High
Unreviewed
CVE-2024-38888
was published
Aug 2, 2024
An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated...
High
Unreviewed
CVE-2024-38176
was published
Jul 24, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1)....
High
Unreviewed
CVE-2024-39873
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API