GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,883

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

176 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Authentication Bypass Using an Alternate Path or Channel vulnerability in Stacks Stacks Mobile... Critical Unreviewed

CVE-2024-50477 was published Oct 28, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Realty Workstation... Critical Unreviewed

CVE-2024-50489 was published Oct 28, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in MaanTheme MaanStore API... Critical Unreviewed

CVE-2024-50487 was published Oct 28, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Deryck Oñate User... Critical Unreviewed

CVE-2024-50503 was published Oct 30, 2024

The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-9988 was published Oct 29, 2024

The Crypto plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-9989 was published Oct 29, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Acnoo Acnoo Flutter API... Critical Unreviewed

CVE-2024-50486 was published Oct 28, 2024

A remote authentication bypass issue exists in some OneView APIs. Critical Unreviewed

CVE-2023-30909 was published Sep 14, 2023

An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an... Critical Unreviewed

CVE-2023-49231 was published Mar 29, 2024

The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2024-9501 was published Oct 26, 2024

The WatchTowerHQ plugin for WordPress is vulnerable to authentication bypass in versions up to,... Critical Unreviewed

CVE-2024-9933 was published Oct 26, 2024

The Extensions by HocWP Team plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2024-9930 was published Oct 26, 2024

The Wux Blog Editor plugin for WordPress is vulnerable to authentication bypass in versions up to... Critical Unreviewed

CVE-2024-9931 was published Oct 26, 2024

The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all... Critical Unreviewed

CVE-2024-9488 was published Oct 25, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Vivek Tamrakar WP REST... Critical Unreviewed

CVE-2024-49328 was published Oct 20, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Najeeb Ahmad Simple... Critical Unreviewed

CVE-2024-49604 was published Oct 20, 2024

The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in all... Critical Unreviewed

CVE-2024-9893 was published Oct 16, 2024

: Authentication Bypass Using an Alternate Path or Channel vulnerability in sooskriszta, webforza... Critical Unreviewed

CVE-2024-49247 was published Oct 16, 2024

The UltimateAI plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-9105 was published Oct 16, 2024

The Pedalo Connector plugin for WordPress is vulnerable to authentication bypass in versions up... Critical Unreviewed

CVE-2024-9822 was published Oct 11, 2024

The use of `Module._load()` can bypass the policy mechanism and require modules outside of the... Critical Unreviewed

CVE-2023-32002 was published Aug 21, 2023

The WordPress & WooCommerce Affiliate Program plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2024-9289 was published Oct 1, 2024

The Wechat Social login plugin for WordPress is vulnerable to authentication bypass in versions... Critical Unreviewed

CVE-2024-9106 was published Oct 1, 2024

The WooCommerce Photo Reviews Premium plugin for WordPress is vulnerable to authentication bypass... Critical Unreviewed

CVE-2024-8277 was published Sep 11, 2024

An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full... Critical Unreviewed

CVE-2024-43692 was published Sep 25, 2024

Previous 1…5…8 Next

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

176 advisories