GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

329 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

mod_userdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users... Moderate Unreviewed

CVE-2025-66200 was published Dec 5, 2025

DCIM dcTrack allows an attacker to misuse certain remote access features. An authenticated user... High Unreviewed

CVE-2025-66238 was published Dec 5, 2025

The issue was addressed by adding additional logic. This issue is fixed in iOS 26.1 and iPadOS 26... Moderate Unreviewed

CVE-2025-43422 was published Nov 4, 2025

The FindAll Membership plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-13539 was published Nov 27, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in ABB ABB Ability... Critical Unreviewed

CVE-2025-10571 was published Nov 20, 2025

NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A... Critical Unreviewed

CVE-2024-12847 was published Jan 10, 2025

Mitigation bypass in the DOM: Core & HTML component. This vulnerability affects Firefox < 145,... Moderate Unreviewed

CVE-2025-13013 was published Nov 11, 2025

Mitigation bypass in the DOM: Security component. This vulnerability affects Firefox < 145 and... High Unreviewed

CVE-2025-13018 was published Nov 11, 2025

The Itel DAB MUX (IDMUX build c041640a) is vulnerable to Authentication Bypass due to improper... Critical Unreviewed

CVE-2025-63217 was published Nov 19, 2025

An Authentication Bypass issue in CentralSquare Community Development 19.5.7 allows attackers to... Critical Unreviewed

CVE-2025-64281 was published Nov 12, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Elated-Themes Search &... Critical Unreviewed

CVE-2025-62064 was published Nov 6, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Iulia Cazan Emails... High Unreviewed

CVE-2025-60041 was published Oct 22, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in quantumcloud Simple... Moderate Unreviewed

CVE-2025-49901 was published Oct 22, 2025

An authentication bypass vulnerability has been identified in certain DSL series routers, may... Critical Unreviewed

CVE-2025-59367 was published Nov 13, 2025

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who... Moderate Unreviewed

CVE-2025-12445 was published Nov 10, 2025

Inappropriate implementation in Extensions in Google Chrome prior to 142.0.7444.59 allowed an... Moderate Unreviewed

CVE-2025-12431 was published Nov 10, 2025

On Elspec G5 devices through 1.2.2.19, a person with physical access to the device can reset the... Moderate Unreviewed

CVE-2025-59392 was published Nov 6, 2025

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the... Critical Unreviewed

CVE-2025-2747 was published Mar 24, 2025

An authentication bypass vulnerability in Kentico Xperience allows authentication bypass via the... Critical Unreviewed

CVE-2025-2746 was published Mar 24, 2025

A permissions issue was addressed with additional restrictions. This issue is fixed in watchOS 26... High Unreviewed

CVE-2025-43436 was published Nov 4, 2025

"sessionlist.html" and "sys_trayentryreboot.html" are accessible with no authentication. ... Critical Unreviewed

CVE-2024-33610 was published Nov 26, 2024

IBM i 7.3, 7.4, and 7.5 is vulnerable to bypassing Navigator for i interface restrictions. By... Moderate Unreviewed

CVE-2024-51464 was published Dec 21, 2024

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda... Critical Unreviewed

CVE-2025-27129 was published Aug 20, 2025

Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2... High Unreviewed

CVE-2025-32976 was published Jun 26, 2025

It was possible to craft an email that showed a tracking link as an attachment. If the user... High Unreviewed

CVE-2025-3932 was published May 14, 2025

Previous1…14 Next

Previous 1 2 3 4 5 … 13 14 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

329 advisories