Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

320 advisories

Loading
An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet... High Unreviewed
CVE-2024-26009 was published Aug 12, 2025
In TOTOLINK A7000R firmware 9.1.0u.6115_B20201022, an attacker can bypass login by sending a... Critical Unreviewed
CVE-2025-51452 was published Aug 13, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Authenticator... Critical Unreviewed
CVE-2025-8995 was published Aug 15, 2025
Liferay Portal Login Bypass Vulnerability Low
CVE-2025-3639 was published for com.liferay.portal:release.portal.bom (Maven) Aug 18, 2025
An issue in the default configuration of the password reset function in LogicData eCommerce... Moderate Unreviewed
CVE-2025-52338 was published Aug 19, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in magepeopleteam Taxi... Critical Unreviewed
CVE-2025-54713 was published Aug 20, 2025
An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda... Critical Unreviewed
CVE-2025-27129 was published Aug 20, 2025
An information disclosure vulnerability exists in the /goform/getproductInfo functionality of... High Unreviewed
CVE-2025-24496 was published Aug 20, 2025
There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 (2025... Critical Unreviewed
CVE-2025-50904 was published Aug 20, 2025
An issue in the lock screen component of Reolink v4.54.0.4.20250526 allows attackers to bypass... Moderate Unreviewed
CVE-2025-55623 was published Aug 22, 2025
The Simpler Checkout plugin for WordPress is vulnerable to Authentication Bypass in versions 0.7... Critical Unreviewed
CVE-2025-7642 was published Aug 23, 2025
The Bravis User plugin for WordPress is vulnerable to Authentication Bypass in all versions up to... High Unreviewed
CVE-2025-5060 was published Aug 23, 2025
The Case Theme User plugin for WordPress is vulnerable to Authentication Bypass in all versions... Critical Unreviewed
CVE-2025-5821 was published Aug 23, 2025
An authentication bypass vulnerability in Arcserve Unified Data Protection (UDP) allows... High Unreviewed
CVE-2025-34520 was published Aug 28, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster... Critical Unreviewed
CVE-2025-54738 was published Aug 28, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in uxper Golo allows... Critical Unreviewed
CVE-2025-54725 was published Aug 28, 2025
The AdForest theme for WordPress is vulnerable to Authentication Bypass in all versions up to,... Critical Unreviewed
CVE-2025-8359 was published Sep 6, 2025
This vulnerability affects Firefox < 143 and Thunderbird < 143. Moderate Unreviewed
CVE-2025-10531 was published Sep 16, 2025
The CBIS/NCS Manager API is vulnerable to an authentication bypass. By sending a specially... High Unreviewed
CVE-2023-49564 was published Sep 18, 2025
The Service Finder SMS System plugin for WordPress is vulnerable to authentication bypass in all... High Unreviewed
CVE-2025-5955 was published Sep 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database