GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,233
Erlang
31
GitHub Actions
20
Go
1,992
Maven
5,000+
npm
3,709
NuGet
661
pip
3,346
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+
20 advisories
Filter by severity
phpMyFAQ has Weak Password Requirements
Moderate
CVE-2023-0307
was published
for
thorsten/phpmyfaq
(Composer)
Jan 16, 2023
Weak Password Requirements in UnboundID LDAP SDK
Critical
CVE-2018-1000134
was published
for
com.unboundid:unboundid-ldapsdk
(Maven)
May 13, 2022
etcd has no minimum password length
Moderate
CVE-2020-15115
was published
for
go.etcd.io/etcd/client/v3
(Go)
Oct 6, 2022
Missing password strength check in notrinos/notrinos-erp
High
CVE-2022-2927
was published
for
notrinos/notrinos-erp
(Composer)
Aug 23, 2022
phpMyFAQ contains Weak Password Requirements
Critical
CVE-2022-3754
was published
for
thorsten/phpmyfaq
(Composer)
Oct 29, 2022
Raneto v0.17.0 employs weak password complexity requirements
Critical
CVE-2022-35143
was published
for
raneto
(npm)
Aug 5, 2022
rdiffweb allows a new password to be the same as the previous password
Moderate
CVE-2022-3376
was published
for
rdiffweb
(pip)
Oct 6, 2022
Weak Password Requirements in Daybyday CRM
High
CVE-2022-22110
was published
for
bottelet/flarepoint
(Composer)
Jan 8, 2022
Froxlor contains Weak Password Requirements
High
CVE-2023-0564
was published
for
froxlor/froxlor
(Composer)
Jan 29, 2023
Publify contains Weak Password Requirements
Moderate
CVE-2023-0569
was published
for
publify_core
(RubyGems)
Jan 29, 2023
Weak Password Requirements in thorsten/phpmyfaq
High
CVE-2023-0793
was published
for
thorsten/phpmyfaq
(Composer)
Feb 12, 2023
phpMyFAQ has weak password requirements
Moderate
CVE-2023-1753
was published
for
thorsten/phpmyfaq
(Composer)
Mar 31, 2023
Weak Password Requirements in calibreweb
High
CVE-2023-2106
was published
for
calibreweb
(pip)
Apr 15, 2023
Answer has Weak Password Requirements
High
CVE-2023-4125
was published
for
github.com/answerdev/answer
(Go)
Aug 3, 2023
Apache InLong has Weak Password Requirements in Apache InLong
Critical
CVE-2023-31098
was published
for
org.apache.inlong:manager-pojo
(Maven)
Jul 6, 2023
Silverpeas vulnerable to password complexity rule bypass
Low
CVE-2024-42850
was published
for
org.silverpeas.core:silverpeas-core
(Maven)
Aug 16, 2024
Modoboa has Weak Password Requirements
Moderate
CVE-2023-2160
was published
for
modoboa
(pip)
Apr 18, 2023
rdiffweb contains Weak Password Requirements
High
CVE-2022-3179
was published
for
rdiffweb
(pip)
Sep 14, 2022
rdiffweb vulnerable to password complexity bypass leading to weak passwords
Moderate
CVE-2022-3326
was published
for
rdiffweb
(pip)
Sep 30, 2022
ProTip!
Advisories are also available from the
GraphQL API