Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

102 advisories

Loading
electerm's encrypt method not safe enough Moderate
CVE-2026-45787 was published for electerm (npm) May 14, 2026
amwhoi Credited to amwhoi
LiteLLM: Password hash exposure and pass-the-hash authentication bypass High
GHSA-69x8-hrgq-fjj8 was published for litellm (pip) Apr 8, 2026
Flowise has Insufficient Password Salt Rounds Moderate
CVE-2026-56272 was published for flowise (npm) Mar 5, 2026
kolega-ai-dev Credited to kolega-ai-dev
RiteCMS v3.1.0 was discovered to use insecure encryption to store passwords. Moderate Unreviewed
CVE-2025-67168 was published Dec 17, 2025
NeuVector has an insecure password storage and is vulnerable to rainbow attack Moderate
CVE-2025-53884 was published for github.com/neuvector/neuvector (Go) Aug 28, 2025
holyspectral Credited to holyspectral
Taylored webhook validation vulnerabilities Critical
GHSA-8g98-m4j9-qww5 was published for taylored (npm) Jun 18, 2025
IBM Security Verify Governance 10.0.2 Identity Manager uses a one-way cryptographic hash... Moderate Unreviewed
CVE-2023-33838 was published Jan 29, 2025
ProTip! Advisories are also available from the GraphQL API