GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,903

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

98 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

DCIM dcTrack allows an attacker to misuse certain remote access features. An authenticated user... High Unreviewed

CVE-2025-66238 was published Dec 5, 2025

Mitigation bypass in the DOM: Security component. This vulnerability affects Firefox < 145 and... High Unreviewed

CVE-2025-13018 was published Nov 11, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 26... High Unreviewed

CVE-2025-43436 was published Nov 4, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Iulia Cazan Emails... High Unreviewed

CVE-2025-60041 was published Oct 22, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Authenticator... High Unreviewed

CVE-2025-8093 was published Oct 11, 2025

An unauthenticated debug port may allow access to the device file system. High Unreviewed

CVE-2025-10653 was published Oct 2, 2025

An authentication bypass vulnerability exists in LG Innotek camera models LND7210 and LNV7210R.... High Unreviewed

CVE-2025-10538 was published Oct 1, 2025

The LatePoint plugin for WordPress is vulnerable to Authentication Bypass due to insufficient... High Unreviewed

CVE-2025-7038 was published Sep 30, 2025

The Service Finder SMS System plugin for WordPress is vulnerable to authentication bypass in all... High Unreviewed

CVE-2025-5955 was published Sep 19, 2025

The CBIS/NCS Manager API is vulnerable to an authentication bypass. By sending a specially... High Unreviewed

CVE-2023-49564 was published Sep 18, 2025

An authentication bypass vulnerability in Arcserve Unified Data Protection (UDP) allows... High Unreviewed

CVE-2025-34520 was published Aug 28, 2025

The Bravis User plugin for WordPress is vulnerable to Authentication Bypass in all versions up to... High Unreviewed

CVE-2025-5060 was published Aug 23, 2025

An information disclosure vulnerability exists in the /goform/getproductInfo functionality of... High Unreviewed

CVE-2025-24496 was published Aug 20, 2025

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet... High Unreviewed

CVE-2024-26009 was published Aug 12, 2025

A vulnerability has been identified in SINUMERIK 828D PPU.4 (All versions < V4.95 SP5), SINUMERIK... High Unreviewed

CVE-2025-40743 was published Aug 12, 2025

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions), RUGGEDCOM ROX... High Unreviewed

CVE-2025-40761 was published Aug 12, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in ABB ASPECT.This issue... High Unreviewed

CVE-2025-53187 was published Aug 11, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP... High Unreviewed

CVE-2025-24000 was published Aug 7, 2025

Ruckus SmartZone (SZ) before 6.1.2p3 Refresh Build allows authentication bypass via a valid API... High Unreviewed

CVE-2025-44957 was published Aug 4, 2025

An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that... High Unreviewed

CVE-2025-7742 was published Jul 25, 2025

An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval... High Unreviewed

CVE-2025-31512 was published Jul 22, 2025

The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all... High Unreviewed

CVE-2025-7692 was published Jul 22, 2025

The Nokri - Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation... High Unreviewed

CVE-2025-1313 was published Jul 12, 2025

Nokia Single RAN AirScale baseband allows an authenticated administrative user access to all... High Unreviewed

CVE-2025-24332 was published Jul 2, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in ThemesGrove WP SmartPay... High Unreviewed

CVE-2025-25171 was published Jun 27, 2025

Previous1…4 Next

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

98 advisories