GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
307 advisories
Filter by severity
A vulnerability exists in the FOXMAN-UN/UNEM server / APIGateway that
if exploited allows a...
Moderate
Unreviewed
CVE-2024-28022
was published
Jun 11, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Mia Technology Inc....
High
Unreviewed
CVE-2024-5862
was published
Jun 24, 2024
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 uses an inadequate account lockout...
Moderate
Unreviewed
CVE-2024-25031
was published
Jun 29, 2024
An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated...
High
Unreviewed
CVE-2024-38176
was published
Jul 24, 2024
A client side rate limit issue discovered in Connectize AC21000 G6 641.139.1.1256 allows...
Critical
Unreviewed
CVE-2023-24051
was published
Dec 5, 2023
ZITADEL's Improper Lockout Mechanism Leads to MFA Bypass
Moderate
CVE-2024-32868
was published
for
github.com/zitadel/zitadel
(Go)
Apr 25, 2024
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly...
High
Unreviewed
CVE-2024-38888
was published
Aug 2, 2024
Improper Restriction of Excessive Authentication Attempts in Argo API
High
CVE-2020-8827
was published
for
github.com/argoproj/argo-cd
(Go)
Jul 26, 2021
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000...
Critical
Unreviewed
CVE-2024-39225
was published
Aug 6, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1)....
High
Unreviewed
CVE-2024-39874
was published
Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1)....
High
Unreviewed
CVE-2024-39873
was published
Jul 9, 2024
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions ...
High
Unreviewed
CVE-2024-41904
was published
Aug 13, 2024
A vulnerability has been identified in Location Intelligence family (All versions < V4.4)....
Moderate
Unreviewed
CVE-2024-41682
was published
Aug 13, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
High
Unreviewed
CVE-2024-39398
was published
Aug 14, 2024
Lack of protection against brute force attacks in M-Files Server before 23.12.13205.0 allows an...
High
Unreviewed
CVE-2023-6912
was published
Dec 20, 2023
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions...
Critical
Unreviewed
CVE-2024-42466
was published
Aug 16, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in upKeeper Solutions...
Critical
Unreviewed
CVE-2024-42465
was published
Aug 16, 2024
Dell RecoverPoint for Virtual Machines 5.3.x contains a brute force/dictionary attack...
Moderate
Unreviewed
CVE-2024-22425
was published
Feb 16, 2024
RapidIdentity LTS through 2023.0.2 and Cloud through 2024.08.0 improperly restricts excessive...
Moderate
Unreviewed
CVE-2024-45589
was published
Sep 5, 2024
An improper restriction of excessive authentication attempts vulnerability has been reported to...
Low
Unreviewed
CVE-2024-32771
was published
Sep 6, 2024
Windmill HTTP Request users.rs excessive authentication in github.com/windmill-labs/windmill
Moderate
CVE-2024-8462
was published
for
github.com/windmill-labs/windmill
(Go)
Sep 5, 2024
An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0...
High
Unreviewed
CVE-2024-45327
was published
Sep 11, 2024
A vulnerability identified in NetIQ Advance Authentication that doesn't enforce account lockout...
High
Unreviewed
CVE-2021-22530
was published
Aug 28, 2024
Keycloak Services has a potential bypass of brute force protection
Moderate
CVE-2024-4629
was published
for
org.keycloak:keycloak-services
(Maven)
Sep 17, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information...
Moderate
Unreviewed
CVE-2024-5682
was published
Sep 18, 2024
ProTip!
Advisories are also available from the
GraphQL API