GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,883

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

176 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WP Foodbakery plugin for WordPress is vulnerable to privilege escalation via account takeover... Critical Unreviewed

CVE-2025-0181 was published Feb 11, 2025

The WP Directorybox Manager plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2025-0316 was published Feb 9, 2025

The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2024-7503 was published Aug 12, 2024

The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2025-1061 was published Feb 7, 2025

Multiple Elber products are affected by an authentication bypass vulnerability which allows... Critical Unreviewed

CVE-2025-0674 was published Feb 7, 2025

The CE21 Suite plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-10284 was published Nov 9, 2024

The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-12857 was published Jan 22, 2025

Even if the authentication fails for local service authentication, the requested command could... Critical Unreviewed

CVE-2022-46732 was published Jan 18, 2023

An authentication bypass in the admin web console of Ivanti CSA before 5.0.3 allows a remote... Critical Unreviewed

CVE-2024-11639 was published Dec 10, 2024

The Themes Coder – Create Android & iOS Apps For Your Woocommerce Site plugin for WordPress is... Critical Unreviewed

CVE-2024-12402 was published Jan 7, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in VibeThemes WPLMS allows... Critical Unreviewed

CVE-2024-56044 was published Dec 31, 2024

The AdForest theme for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11349 was published Dec 21, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Envato Security Team... Critical Unreviewed

CVE-2024-43234 was published Dec 16, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in appgenixinfotech... Critical Unreviewed

CVE-2024-54294 was published Dec 13, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Codexpert, Inc CoSchool... Critical Unreviewed

CVE-2024-54296 was published Dec 13, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in InspireUI ListApp... Critical Unreviewed

CVE-2024-54295 was published Dec 13, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in www.vbsso.com vBSSO... Critical Unreviewed

CVE-2024-54297 was published Dec 13, 2024

The Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up... Critical Unreviewed

CVE-2024-10961 was published Nov 23, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Automation Web Platform... Critical Unreviewed

CVE-2024-52475 was published Nov 28, 2024

The JobSearch WP Job Board plugin for WordPress is vulnerable to privilege escalation in all... Critical Unreviewed

CVE-2024-11925 was published Nov 28, 2024

The Really Simple Security (Free, Pro, and Pro Multisite) plugins for WordPress are vulnerable to... Critical Unreviewed

CVE-2024-10924 was published Nov 15, 2024

This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper... Critical Unreviewed

CVE-2024-10381 was published Oct 25, 2024

The MultiManager WP – Manage All Your WordPress Sites Easily plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-11028 was published Nov 13, 2024

The Relais 2FA plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-10245 was published Nov 12, 2024

Sharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an... Critical Unreviewed

CVE-2024-47406 was published Oct 25, 2024

Previous 1…4…8 Next

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

176 advisories