Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

282 advisories

A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that if exploited allows a... Moderate Unreviewed
CVE-2024-28022 was published Jun 11, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in wpdevart Contact Form... Moderate Unreviewed
CVE-2024-35747 was published Jun 10, 2024
Improper restriction of excessive authentication attempts with two factor authentication methods... Moderate Unreviewed
CVE-2024-28833 was published Jun 10, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WebFactory Ltd Captcha... Moderate Unreviewed
CVE-2023-48745 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Nitin Rathod WP Forms... Moderate Unreviewed
CVE-2023-48276 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Contact... Moderate Unreviewed
CVE-2023-48318 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in 10Web Form Builder... Moderate Unreviewed
CVE-2023-48290 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Forge12 Interactive... Moderate Unreviewed
CVE-2023-45009 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Devnath verma WP... Moderate Unreviewed
CVE-2023-44235 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in WPPlugins – WordPress... Moderate Unreviewed
CVE-2023-34001 was published Jun 4, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Brainstorm Force... Moderate Unreviewed
CVE-2023-23730 was published Jun 4, 2024
Silverstripe Brute force bypass on default admin Critical
GHSA-8v6m-7f5v-hhx6 was published for silverstripe/framework (Composer) May 23, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in CodePeople Appointment... Moderate Unreviewed
CVE-2024-32720 was published May 17, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Metagauss ProfileGrid... Moderate Unreviewed
CVE-2024-32774 was published May 17, 2024
eZ Platform Admin UI Password reset vulnerability High
GHSA-hfpp-2vhw-qq43 was published for ezsystems/ezplatform-user (Composer) May 15, 2024
eZ Platform Password reset vulnerability High
GHSA-cg84-55jx-4237 was published for ezsystems/ezplatform-admin-ui (Composer) May 15, 2024
KioWare for Windows (versions all through 8.35) allows to brute force the PIN number, which... Moderate Unreviewed
CVE-2024-3461 was published May 14, 2024
ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass Moderate
CVE-2024-32868 was published for github.com/zitadel/zitadel (Go) Apr 25, 2024
livio-a Skelmis
itz-d0dgy amit-laish muhlemmer peintnermax
Improper Restriction of Excessive Authentication Attempts vulnerability in LoginPress LoginPress... Moderate Unreviewed
CVE-2024-32676 was published Apr 25, 2024
Improper restriction of excessive authentication attempts on some authentication methods in... Moderate Unreviewed
CVE-2024-28825 was published Apr 24, 2024
An Improper Restriction of Excessive Authentication Attempts vulnerability in Juniper Networks... Moderate Unreviewed
CVE-2024-30390 was published Apr 12, 2024
A vulnerability, which was classified as problematic, has been found in codelyfe Stupid Simple... Low Unreviewed
CVE-2024-3202 was published Apr 3, 2024
Bypassing Rate Limit and Brute Force Protection Using Cache Overflow Moderate
CVE-2024-21662 was published for github.com/argoproj/argo-cd/v2 (Go) Mar 18, 2024
nadava669 pasha-codefresh
crenshaw-dev todaywasawesome jannfis
CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that... Critical Unreviewed
CVE-2024-2051 was published Mar 18, 2024
Bypassing Brute Force Protection via Application Crash and In-Memory Data Loss Moderate
CVE-2024-21652 was published for github.com/argoproj/argo-cd/v2 (Go) Mar 18, 2024
nadava669 pasha-codefresh
jannfis crenshaw-dev todaywasawesome
ProTip! Advisories are also available from the GraphQL API