GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,889
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,500
Maven 5,942
npm 4,147
NuGet 735
pip 3,948
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,561

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

317 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Authentication Bypass Using an Alternate Path or Channel vulnerability in appsbd Vitepos allows... High Unreviewed

CVE-2025-22277 was published Apr 1, 2025

This issue was addressed with additional entitlement checks. This issue is fixed in visionOS 2.4,... High Unreviewed

CVE-2025-24095 was published Apr 1, 2025

Drupal Two-factor Authentication (TFA) Vulnerable to Forceful Browsing High

CVE-2025-31694 was published for drupal/tfa (Composer) Apr 1, 2025

VMware Tools for Windows contains an authentication bypass vulnerability due to improper access... High Unreviewed

CVE-2025-22230 was published Mar 25, 2025

On 70mai Dash Cam 1S devices, by connecting directly to the dashcam's network and accessing the... High Unreviewed

CVE-2025-30112 was published Mar 24, 2025

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via... Critical Unreviewed

CVE-2024-13442 was published Mar 19, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-13772 was published Mar 14, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-13771 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11286 was published Mar 14, 2025

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1... Critical Unreviewed

CVE-2025-2080 was published Mar 13, 2025

This vulnerability exists in the CAP back office application due to improper implementation of... High Unreviewed

CVE-2025-29996 was published Mar 13, 2025

The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-13446 was published Mar 12, 2025

The InWave Jobs plugin for WordPress is vulnerable to privilege escalation via password reset in... Critical Unreviewed

CVE-2025-1315 was published Mar 7, 2025

The School Management System for Wordpress plugin for WordPress is vulnerable to privilege... High Unreviewed

CVE-2024-9658 was published Mar 7, 2025

The Homey theme for WordPress is vulnerable to authentication bypass in versions up to, and... High Unreviewed

CVE-2025-0749 was published Mar 7, 2025

The WP Real Estate Manager plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-1515 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed

CVE-2025-27658 was published Mar 5, 2025

Authentication bypass vulnerability exists in FutureNet AS series (Industrial Routers) provided... High Unreviewed

CVE-2025-24846 was published Mar 3, 2025

The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and... Critical Unreviewed

CVE-2025-1564 was published Mar 1, 2025

The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all... Critical Unreviewed

CVE-2025-1671 was published Mar 1, 2025

The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-1638 was published Mar 1, 2025

IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2... Critical Unreviewed

CVE-2025-0159 was published Feb 28, 2025

An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from... High Unreviewed

CVE-2025-1739 was published Feb 27, 2025

The Login Me Now plugin for WordPress is vulnerable to authentication bypass in versions up to,... High Unreviewed

CVE-2025-1717 was published Feb 27, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Aldo Latino... Critical Unreviewed

CVE-2025-26966 was published Feb 25, 2025

Previous 1…4…13 Next

Previous 1 2 3 4 5 6 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

317 advisories