Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,318
Erlang
31
GitHub Actions
21
Go
2,074
Maven
5,000+
npm
3,746
NuGet
674
pip
3,434
Pub
12
RubyGems
892
Rust
880
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

81 advisories

Loading
Improper Restriction of Excessive Authentication Attempts vulnerability in LoginPress LoginPress... Moderate Unreviewed
CVE-2024-32676 was published Apr 25, 2024
Improper restriction of excessive authentication attempts on some authentication methods in... Moderate Unreviewed
CVE-2024-28825 was published Apr 24, 2024
An Improper Restriction of Excessive Authentication Attempts vulnerability in Juniper Networks... Moderate Unreviewed
CVE-2024-30390 was published Apr 12, 2024
Dell RecoverPoint for Virtual Machines 5.3.x contains a brute force/dictionary attack... Moderate Unreviewed
CVE-2024-22425 was published Feb 16, 2024
IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 is vulnerable to HTTP header injection,... Moderate Unreviewed
CVE-2023-45190 was published Feb 9, 2024
A vulnerability was found in Thecosy IceCMS 2.0.1. It has been classified as problematic.... Moderate Unreviewed
CVE-2023-6756 was published Dec 13, 2023
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in FortiMail... Moderate Unreviewed
CVE-2023-45582 was published Nov 14, 2023
The unauthenticated attacker in NetWeaver AS Java Logon application - version 7.50, can brute... Moderate Unreviewed
CVE-2023-42480 was published Nov 14, 2023
Improper Restriction of Excessive Authentication Attempts vulnerability in Mitsubishi Electric... Moderate Unreviewed
CVE-2023-4625 was published Nov 6, 2023
A vulnerability was found in PHPGurukul Online Shopping Portal 1.0. It has been declared as... Moderate Unreviewed
CVE-2023-3605 was published Jul 10, 2023
The captive portal in Inpiazza Cloud WiFi versions prior to v4.2.17 does not enforce limits on... Moderate Unreviewed
CVE-2023-33754 was published Jun 1, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... Moderate Unreviewed
CVE-2022-29056 was published Mar 9, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... Moderate Unreviewed
CVE-2023-26209 was published Mar 9, 2023
A improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... Moderate Unreviewed
CVE-2023-26208 was published Mar 9, 2023
Dell SupportAssist contains a rate limit bypass issues in screenmeet API third party component.... Moderate Unreviewed
CVE-2022-34389 was published Feb 11, 2023
Improper Restriction of Excessive Authentication Attempts in GitHub repository kareadita/kavita... Moderate Unreviewed
CVE-2022-3945 was published Nov 11, 2022
PwnDoc through 0.5.3 might allow remote attackers to identify disabled user account names by... Moderate Unreviewed
CVE-2022-44023 was published Oct 30, 2022
PwnDoc through 0.5.3 might allow remote attackers to identify valid user account names by... Moderate Unreviewed
CVE-2022-44022 was published Oct 30, 2022
WiseConnect - ScreenConnect Session Code Bypass. An attacker would have to use a proxy to monitor... Moderate Unreviewed
CVE-2022-36781 was published Sep 29, 2022
There is a password verification vulnerability in WS7200-10 11.0.2.13. Attackers on the LAN may... Moderate Unreviewed
CVE-2022-33735 was published Sep 21, 2022
An issue was discovered in DSK DSKNet 2.16.136.0 and 2.17.136.5. It mishandles access control.... Moderate Unreviewed
CVE-2022-24689 was published Jul 19, 2022
While a user account for the IBM Spectrum Protect Server 8.1.0.000 through 8.1.14 is being... Moderate Unreviewed
CVE-2022-22496 was published Jul 1, 2022
An issue was discovered in certain Verbatim drives through 2022-03-31. The security feature for... Moderate Unreviewed
CVE-2022-28386 was published Jun 9, 2022
An issue was discovered in certain Verbatim drives through 2022-03-31. Due to an insecure design,... Moderate Unreviewed
CVE-2022-28384 was published Jun 9, 2022
In Ionic Identity Vault before 5.0.5, the protection mechanism for invalid unlock attempts can be... Moderate Unreviewed
CVE-2021-44033 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database