GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,935
Composer 5,069
Erlang 39
GitHub Actions 38
Go 2,726
Maven 6,143
npm 4,331
NuGet 763
pip 4,107
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,299

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

176 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The InWave Jobs plugin for WordPress is vulnerable to privilege escalation via password reset in... Critical Unreviewed

CVE-2025-1315 was published Mar 7, 2025

The WP Real Estate Manager plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-1515 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed

CVE-2025-27658 was published Mar 5, 2025

The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all... Critical Unreviewed

CVE-2025-1671 was published Mar 1, 2025

The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and... Critical Unreviewed

CVE-2025-1564 was published Mar 1, 2025

The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-1638 was published Mar 1, 2025

IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2... Critical Unreviewed

CVE-2025-0159 was published Feb 28, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Aldo Latino... Critical Unreviewed

CVE-2025-26966 was published Feb 25, 2025

The Dingtian DT-R0 Series is vulnerable to an exploit that allows attackers to bypass login... Critical Unreviewed

CVE-2025-1283 was published Feb 14, 2025

The WP Directorybox Manager plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2024-13182 was published Feb 13, 2025

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover... Critical Unreviewed

CVE-2025-0181 was published Feb 11, 2025

The WP Directorybox Manager plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2025-0316 was published Feb 9, 2025

The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2025-1061 was published Feb 7, 2025

Multiple Elber products are affected by an authentication bypass vulnerability which allows... Critical Unreviewed

CVE-2025-0674 was published Feb 7, 2025

BigAntSoft BigAnt Server, up to and including version 5.6.06, is vulnerable to unauthenticated... Critical Unreviewed

CVE-2025-0364 was published Feb 4, 2025

The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-12857 was published Jan 22, 2025

An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting... Critical Unreviewed

CVE-2024-55591 was published Jan 14, 2025

NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A... Critical Unreviewed

CVE-2024-12847 was published Jan 10, 2025

The Themes Coder – Create Android & iOS Apps For Your Woocommerce Site plugin for WordPress is... Critical Unreviewed

CVE-2024-12402 was published Jan 7, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in VibeThemes WPLMS allows... Critical Unreviewed

CVE-2024-56044 was published Dec 31, 2024

The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11349 was published Dec 21, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Envato Security Team... Critical Unreviewed

CVE-2024-43234 was published Dec 16, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in appgenixinfotech... Critical Unreviewed

CVE-2024-54294 was published Dec 13, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in www.vbsso.com vBSSO... Critical Unreviewed

CVE-2024-54297 was published Dec 13, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in InspireUI ListApp... Critical Unreviewed

CVE-2024-54295 was published Dec 13, 2024

Previous 1…3…8 Next

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

176 advisories