GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Filter advisories

GitHub reviewed advisories

All reviewed 32,549
Composer 6,122
Erlang 86
GitHub Actions 54
Go 4,175
Maven 6,713
npm 6,687
NuGet 1,019
pip 5,531
Pub 13
RubyGems 1,102
Rust 1,421
Swift 61

Unreviewed advisories

All unreviewed 310,882

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

141 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An Improper Authorization vulnerability exists in PayloadCMS version 3.84.1 due to insufficient... Moderate Unreviewed

CVE-2026-11779 was published Jun 26, 2026

Capgo before 12.128.2 contains a credential validation vulnerability in the POST /functions/v1... Moderate Unreviewed

CVE-2026-56234 was published Jun 23, 2026

AIL did not restrict repeated failed attempts to verify a two-factor authentication (OTP) code.... Moderate Unreviewed

CVE-2026-56450 was published Jun 22, 2026

Mercusys AC12G (EU) V1 with firmware AC12G(EU)_V1_200909 enables WPS 2.0 by default with a weak... Moderate Unreviewed

CVE-2026-36612 was published Jun 3, 2026

Uncontrolled resource consumption in the Wireless Control Module (WCM) of the Indian Motorcycle... Moderate Unreviewed

CVE-2026-49324 was published May 29, 2026

Improper restriction of excessive authentication attempts vulnerability in Turkiye Electricity... Moderate Unreviewed

CVE-2026-1816 was published May 21, 2026

HCL AION is affected by a vulnerability where adequate protections against brute-force attempts... Moderate Unreviewed

CVE-2025-62313 was published May 14, 2026

** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts... Moderate Unreviewed

CVE-2026-7255 was published May 12, 2026

Improper restriction of excessive authentication attempts vulnerability in Hitachi Virtual... Moderate Unreviewed

CVE-2025-2514 was published May 7, 2026

The RTSP service of MERCURY IP camera MIPC252W 1.0.5 Build 230306 has an issue handling failed... Moderate Unreviewed

CVE-2026-35902 was published Apr 27, 2026

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-46606 was published Apr 17, 2026

Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against... Moderate Unreviewed

CVE-2026-22616 was published Apr 16, 2026

CWE-307 Improper Restriction of Excessive Authentication Attempts vulnerability exists that would... Moderate Unreviewed

CVE-2026-2402 was published Apr 14, 2026

Rate Limiting for attempting a user login is not being properly enforced, making HCL DevOps... Moderate Unreviewed

CVE-2025-31991 was published Apr 13, 2026

Raytha CMS does not have any brute force protection mechanism implemented. It allows an attacker... Moderate Unreviewed

CVE-2025-69246 was published Mar 16, 2026

IBM DevOps Plan 3.0.0 through 3.0.5 uses an inadequate account lockout setting that could allow a... Moderate Unreviewed

CVE-2025-36363 was published Mar 3, 2026

SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain an authentication bypass... Moderate Unreviewed

CVE-2026-27753 was published Feb 27, 2026

VideoLAN VLC for Android prior to version 3.7.0 contain an authentication bypass in the Remote... Moderate Unreviewed

CVE-2026-26227 was published Feb 26, 2026

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior do not implement... Moderate Unreviewed

CVE-2026-27521 was published Feb 24, 2026

A security flaw has been discovered in Tasin1025 SwiftBuy up to... Moderate Unreviewed

CVE-2026-2110 was published Feb 7, 2026

A vulnerability was identified in D-Link DIR-823X 250416. This vulnerability affects the function... Moderate Unreviewed

CVE-2026-1685 was published Jan 30, 2026

An issue in GL Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. GL.Inet AX1800 Version 4... Moderate Unreviewed

CVE-2025-67091 was published Jan 8, 2026

The LuCI web interface on Gl Inet GL.Inet AX1800 Version 4.6.4 & 4.6.8 are vulnerable. Fix... Moderate Unreviewed

CVE-2025-67090 was published Jan 8, 2026

An issue was discovered in Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router on firmware version... Moderate Unreviewed

CVE-2025-65427 was published Dec 16, 2025

Windu CMS implements weak client-side brute-force protection by using parameter loginError.... Moderate Unreviewed

CVE-2025-59113 was published Nov 18, 2025

Previous1…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

141 advisories