Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

389 advisories

Loading
The Phonemes mode in Pwgen 2.06 generates predictable passwords, which makes it easier for... Critical Unreviewed
CVE-2013-4441 was published May 5, 2022
There is an information disclosure vulnerability on Mate 9 Pro Huawei smartphones versions... Moderate Unreviewed
CVE-2019-5217 was published May 24, 2022
The Telenav Scout GPS Link app 1.x for iOS, as used with Toyota and Lexus vehicles, has an... High Unreviewed
CVE-2019-14951 was published May 24, 2022
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1).... Critical Unreviewed
CVE-2019-13918 was published May 24, 2022
Dell EMC ECS versions prior to 3.4.0.0 contain an improper restriction of excessive... Critical Unreviewed
CVE-2019-3766 was published May 24, 2022
Dell EMC Integrated Data Protection Appliance versions prior to 2.3 do not limit the number of... High Unreviewed
CVE-2019-3746 was published May 24, 2022
An issue was discovered on V-Zug Combi-Steam MSLQ devices before Ethernet R07 and before WLAN R05... Critical Unreviewed
CVE-2019-17215 was published May 24, 2022
bl-kernel/security.class.php in Bludit 3.9.2 allows attackers to bypass a brute-force protection... Critical Unreviewed
CVE-2019-17240 was published May 24, 2022
AutoPi Wi-Fi/NB and 4G/LTE devices before 2019-10-15 allows an attacker to perform a brute-force... Critical Unreviewed
CVE-2019-12941 was published May 24, 2022
Royal TS before 5 has a 0.0.0.0 listener, which makes it easier for attackers to bypass tunnel... High Unreviewed
CVE-2020-13872 was published May 24, 2022
BlackVue DR750-2CH LTE v.1.012_2022.10.26 was discovered to contain a weak default passphrase... Critical Unreviewed
CVE-2023-27746 was published Apr 13, 2023
An issue was discovered in Joomla! 4.2.0 through 4.3.1. The lack of rate limiting allowed brute... High Unreviewed
CVE-2023-23755 was published May 30, 2023
The captive portal in Inpiazza Cloud WiFi versions prior to v4.2.17 does not enforce limits on... Moderate Unreviewed
CVE-2023-33754 was published Jun 1, 2023
An Improper Restriction of Excessive Authentication Attempts [CWE-307] in FortiSIEM below 7.0.0... High Unreviewed
CVE-2022-42478 was published Jun 13, 2023
IBM Security Directory Suite VA 8.0.1 through 8.0.1.19 uses an inadequate account lockout setting... High Unreviewed
CVE-2022-32757 was published Jun 15, 2023
D-Link DSL-224 firmware version 3.0.10 CWE-307: Improper Restriction of Excessive Authentication... Critical Unreviewed
CVE-2023-32224 was published Jun 28, 2023
A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that... Critical Unreviewed
CVE-2022-32515 was published Jul 6, 2023
An improper restriction of excessive authentication attempts vulnerability [CWE-307] in Fortinet... High Unreviewed
CVE-2022-43947 was published Jul 6, 2023
A CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists... High Unreviewed
CVE-2022-43377 was published Jul 6, 2023
The number of login attempts is not limited. This could allow an attacker to perform a brute... Critical Unreviewed
CVE-2023-33868 was published Jul 7, 2023
Improper Restriction of Excessive Authentication Attempts in the SICK ICR890-4 could allow a... High Unreviewed
CVE-2023-35697 was published Jul 10, 2023
SAP BusinessObjects Business Intelligence Platform - version 420, 430, allows an unauthorized... High Unreviewed
CVE-2023-36917 was published Jul 11, 2023
Adobe ColdFusion versions 2018u16 (and earlier), 2021u6 (and earlier) and 2023.0.0.330468 (and... High Unreviewed
CVE-2023-29301 was published Jul 12, 2023
Weintek Weincloud v0.13.6 could allow an attacker to efficiently develop a brute force... High Unreviewed
CVE-2023-32657 was published Jul 20, 2023
An unauthorized user could gain account access to IQ Wifi 6 versions prior to 2.0.2 by conducting... Critical Unreviewed
CVE-2023-3548 was published Jul 25, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database