GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,874

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

329 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet... High Unreviewed

CVE-2024-26009 was published Aug 12, 2025

A vulnerability has been identified in SINUMERIK 828D PPU.4 (All versions < V4.95 SP5), SINUMERIK... High Unreviewed

CVE-2025-40743 was published Aug 12, 2025

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions), RUGGEDCOM ROX... High Unreviewed

CVE-2025-40761 was published Aug 12, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in ABB ASPECT.This issue... High Unreviewed

CVE-2025-53187 was published Aug 11, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP... High Unreviewed

CVE-2025-24000 was published Aug 7, 2025

Ruckus SmartZone (SZ) before 6.1.2p3 Refresh Build allows authentication bypass via a valid API... High Unreviewed

CVE-2025-44957 was published Aug 4, 2025

The Brave Conversion Engine (PRO) plugin for WordPress is vulnerable to Authentication Bypass in... Critical Unreviewed

CVE-2025-7710 was published Aug 2, 2025

The Melapress Login Security plugin for WordPress is vulnerable to Authentication Bypass due to... Critical Unreviewed

CVE-2025-6895 was published Jul 26, 2025

An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that... High Unreviewed

CVE-2025-7742 was published Jul 25, 2025

An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval... High Unreviewed

CVE-2025-31512 was published Jul 22, 2025

The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all... High Unreviewed

CVE-2025-7692 was published Jul 22, 2025

The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in all versions up... Critical Unreviewed

CVE-2025-7444 was published Jul 18, 2025

The Nokri - Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation... High Unreviewed

CVE-2025-1313 was published Jul 12, 2025

The AXIS Camera Station Server had a flaw that allowed to bypass authentication that is normally... Moderate Unreviewed

CVE-2025-30026 was published Jul 11, 2025

Nokia Single RAN AirScale baseband allows an authenticated administrative user access to all... High Unreviewed

CVE-2025-24332 was published Jul 2, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in ThemesGrove WP SmartPay... High Unreviewed

CVE-2025-25171 was published Jun 27, 2025

The Simple Payment plugin for WordPress is vulnerable to Authentication Bypass in versions 1.3.6... Critical Unreviewed

CVE-2025-6688 was published Jun 27, 2025

Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2... High Unreviewed

CVE-2025-32976 was published Jun 26, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Enterprise MFA -... Moderate Unreviewed

CVE-2025-6675 was published Jun 26, 2025

Insufficient policy enforcement in Loader in Google Chrome prior to 138.0.7204.49 allowed a... Moderate Unreviewed

CVE-2025-6556 was published Jun 24, 2025

Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass Vulnerability. This vulnerability... Moderate Unreviewed

CVE-2025-5820 was published Jun 23, 2025

An authentication bypass vulnerability exists in KCM3100 Ver1.4.2 and earlier. If this... Critical Unreviewed

CVE-2025-51381 was published Jun 18, 2025

The Workreap plugin for WordPress, used by the Workreap - Freelance Marketplace WordPress Theme,... Critical Unreviewed

CVE-2025-4973 was published Jun 12, 2025

CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through... Critical Unreviewed

CVE-2025-30184 was published Jun 10, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Password... High Unreviewed

CVE-2025-31019 was published Jun 9, 2025

Previous 1…3…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

329 advisories