Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,758
Maven
5,000+
npm
4,364
NuGet
766
pip
4,132
Pub
12
RubyGems
961
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15 advisories

Loading
Unexpected authentication form rendering in HTML Form Adapter using only non-default redirectless... Low Unreviewed
CVE-2025-26862 was published Oct 27, 2025
Fides has a Lack of Brute-Force Protections on Authentication Endpoints Low
CVE-2025-57815 was published for ethyca-fides (pip) Sep 8, 2025
thabofletcher daveqnet
Credited to thabofletcher and daveqnet
A vulnerability has been identified in the Linux kernel's ksmbd component (kernel SMB/CIFS server... Low Unreviewed
CVE-2023-32251 was published Jul 31, 2025
A vulnerability was found in Mercusys MW301R 1.0.2 Build 190726 Rel.59423n. It has been rated as... Low Unreviewed
CVE-2025-7882 was published Jul 20, 2025
Yealink YMCS RPS before 2025-06-04 lacks SN verification attempt limits, enabling brute-force... Low Unreviewed
CVE-2025-52916 was published Jun 22, 2025
vantage6 lacks brute-force protection on change password functionality Low
CVE-2025-43863 was published for vantage6 (pip) Jun 12, 2025
HCL MyXalytics is affected by concurrent login vulnerability. A concurrent login vulnerability... Low Unreviewed
CVE-2024-42176 was published Mar 19, 2025
Authelia applies regulation separately to Username-based logins to Email-based logins Low
CVE-2025-24806 was published for github.com/authelia/authelia/v4 (Go) Feb 19, 2025
tsschaffert Ahrdie
caesarakalaeii
Credited to tsschaffert, Ahrdie, and caesarakalaeii
A vulnerability was found in Digistar AG-30 Plus 2.6b. It has been classified as problematic.... Low Unreviewed
CVE-2024-11126 was published Nov 12, 2024
An improper restriction of excessive authentication attempts vulnerability has been reported to... Low Unreviewed
CVE-2024-32771 was published Sep 6, 2024
A vulnerability, which was classified as problematic, has been found in codelyfe Stupid Simple... Low Unreviewed
CVE-2024-3202 was published Apr 3, 2024
Improper Restriction of Excessive Authentication Attempts vulnerability in Samsung Smart TV... Low Unreviewed
CVE-2023-41270 was published Nov 8, 2023
A missing Brute-Force protection in CODESYS Development System prior to 3.5.19.20 allows a local... Low Unreviewed
CVE-2023-3669 was published Aug 3, 2023
OctoPrint does not have rate limiting on the login page Low
CVE-2022-2822 was published for OctoPrint (pip) Aug 16, 2022
An issue was discovered in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet... Low Unreviewed
CVE-2020-11582 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database