GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,728
Composer 4,855
Erlang 36
GitHub Actions 35
Go 2,481
Maven 5,904
npm 4,102
NuGet 734
pip 3,915
Pub 12
RubyGems 945
Rust 1,017
Swift 39

Unreviewed advisories

All unreviewed 267,794

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

316 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Authentication Bypass Using an Alternate Path or Channel vulnerability in uxper Golo allows... Critical Unreviewed

CVE-2025-54725 was published Aug 28, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in NooTheme Jobmonster... Critical Unreviewed

CVE-2025-54738 was published Aug 28, 2025

An authentication bypass vulnerability in Arcserve Unified Data Protection (UDP) allows... High Unreviewed

CVE-2025-34520 was published Aug 28, 2025

The Case Theme User plugin for WordPress is vulnerable to Authentication Bypass in all versions... Critical Unreviewed

CVE-2025-5821 was published Aug 23, 2025

The Bravis User plugin for WordPress is vulnerable to Authentication Bypass in all versions up to... High Unreviewed

CVE-2025-5060 was published Aug 23, 2025

The Simpler Checkout plugin for WordPress is vulnerable to Authentication Bypass in versions 0.7... Critical Unreviewed

CVE-2025-7642 was published Aug 23, 2025

An issue in the lock screen component of Reolink v4.54.0.4.20250526 allows attackers to bypass... Moderate Unreviewed

CVE-2025-55623 was published Aug 22, 2025

There is an authentication bypass vulnerability in WinterChenS my-site thru commit 6c79286 (2025... Critical Unreviewed

CVE-2025-50904 was published Aug 20, 2025

An information disclosure vulnerability exists in the /goform/getproductInfo functionality of... High Unreviewed

CVE-2025-24496 was published Aug 20, 2025

An authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda... Critical Unreviewed

CVE-2025-27129 was published Aug 20, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in magepeopleteam Taxi... Critical Unreviewed

CVE-2025-54713 was published Aug 20, 2025

An issue in the default configuration of the password reset function in LogicData eCommerce... Moderate Unreviewed

CVE-2025-52338 was published Aug 19, 2025

Liferay Portal Login Bypass Vulnerability Low

CVE-2025-3639 was published for com.liferay.portal:release.portal.bom (Maven) Aug 18, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Authenticator... Critical Unreviewed

CVE-2025-8995 was published Aug 15, 2025

In TOTOLINK A7000R firmware 9.1.0u.6115_B20201022, an attacker can bypass login by sending a... Critical Unreviewed

CVE-2025-51452 was published Aug 13, 2025

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet... High Unreviewed

CVE-2024-26009 was published Aug 12, 2025

A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions), RUGGEDCOM ROX... High Unreviewed

CVE-2025-40761 was published Aug 12, 2025

A vulnerability has been identified in SINUMERIK 828D PPU.4 (All versions < V4.95 SP5), SINUMERIK... High Unreviewed

CVE-2025-40743 was published Aug 12, 2025

Improper Control of Generation of Code ('Code Injection') vulnerability in ABB ASPECT.This issue... High Unreviewed

CVE-2025-53187 was published Aug 11, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in WPExperts Post SMTP... High Unreviewed

CVE-2025-24000 was published Aug 7, 2025

Ruckus SmartZone (SZ) before 6.1.2p3 Refresh Build allows authentication bypass via a valid API... High Unreviewed

CVE-2025-44957 was published Aug 4, 2025

The Brave Conversion Engine (PRO) plugin for WordPress is vulnerable to Authentication Bypass in... Critical Unreviewed

CVE-2025-7710 was published Aug 2, 2025

The Melapress Login Security plugin for WordPress is vulnerable to Authentication Bypass due to... Critical Unreviewed

CVE-2025-6895 was published Jul 26, 2025

An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that... High Unreviewed

CVE-2025-7742 was published Jul 25, 2025

An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval... High Unreviewed

CVE-2025-31512 was published Jul 22, 2025

Previous1…13 Next

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

316 advisories