Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,894
Erlang
38
GitHub Actions
38
Go
2,558
Maven
5,000+
npm
4,232
NuGet
751
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

16 advisories

Loading
Fides Webserver API Rate Limiting Vulnerability in Proxied Environments Moderate
CVE-2025-57816 was published for ethyca-fides (pip) Sep 8, 2025
daveqnet eastandwestwind
erosselli
Credited to daveqnet, eastandwestwind, and erosselli
OpenFlow discovery protocol can exhaust resources because it is not rate limited Moderate Unreviewed
CVE-2025-48016 was published May 20, 2025
This vulnerability exists in RupeeWeb trading platform due to missing rate limiting on OTP... Moderate Unreviewed
CVE-2025-26524 was published Feb 14, 2025
Missing rate limit in MaysWind ezBookkeeping Moderate
CVE-2024-57603 was published for github.com/mayswind/ezbookkeeping (Go) Feb 13, 2025
Drupal Open Social allows Functionality Misuse Moderate
CVE-2024-13274 was published for goalgorilla/open_social (Composer) Jan 9, 2025
The Syracom Secure Login (2FA) plugin for Jira, Confluence, and Bitbucket through 3.1.4.5 allows... Moderate Unreviewed
CVE-2024-48942 was published Oct 10, 2024
Rate limit vulnerability in Clibo Manager v1.1.9.2 that could allow an attacker to send a large... Moderate Unreviewed
CVE-2024-9199 was published Sep 26, 2024
NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where an... Moderate Unreviewed
CVE-2024-0094 was published Jun 14, 2024
Improper Control of Interaction Frequency vulnerability in Metagauss RegistrationMagic allows... Moderate Unreviewed
CVE-2023-51544 was published Jun 4, 2024
Improper Control of Interaction Frequency vulnerability in Lester ‘GaMerZ’ Chan WP-PostRatings... Moderate Unreviewed
CVE-2023-40332 was published Jun 4, 2024
: Improper Control of Interaction Frequency vulnerability in cartpauj Cartpauj Register Captcha... Moderate Unreviewed
CVE-2023-40673 was published Jun 4, 2024
: Improper Control of Interaction Frequency vulnerability in CodePeople CP Polls allows Flooding... Moderate Unreviewed
CVE-2024-24873 was published May 17, 2024
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a user to cause a denial of service due to... Moderate Unreviewed
CVE-2023-27279 was published Apr 19, 2024
A denial of service vulnerability exists in Contec CONPROSYS HMI System versions 3.5.2 and prior.... Moderate Unreviewed
CVE-2023-2758 was published May 31, 2023
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). An... Moderate Unreviewed
CVE-2021-37191 was published May 24, 2022
Improper Control of Interaction Frequency in Apache syncope-core Moderate
CVE-2018-17184 was published for org.apache.syncope:syncope-core (Maven) Nov 6, 2018
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database