GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,919
Composer 4,476
Erlang 33
GitHub Actions 24
Go 2,207
Maven 5,433
npm 3,858
NuGet 696
pip 3,639
Pub 12
RubyGems 913
Rust 918
Swift 38

Unreviewed advisories

All unreviewed 249,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

212 advisories

Filter by severity

Sort by

Least recently updated

VMware Tools for Windows contains an authentication bypass vulnerability due to improper access... High Unreviewed

CVE-2025-22230 was published Mar 25, 2025

On 70mai Dash Cam 1S devices, by connecting directly to the dashcam's network and accessing the... High Unreviewed

CVE-2025-30112 was published Mar 24, 2025

The Service Finder Bookings plugin for WordPress is vulnerable to privilege escalation via... Critical Unreviewed

CVE-2024-13442 was published Mar 19, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-13772 was published Mar 14, 2025

The Civi - Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable... Critical Unreviewed

CVE-2024-13771 was published Mar 14, 2025

The WP JobHunt plugin for WordPress is vulnerable to authentication bypass in all versions up to,... Critical Unreviewed

CVE-2024-11286 was published Mar 14, 2025

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1... Critical Unreviewed

CVE-2025-2080 was published Mar 13, 2025

This vulnerability exists in the CAP back office application due to improper implementation of... High Unreviewed

CVE-2025-29996 was published Mar 13, 2025

The Workreap plugin for WordPress is vulnerable to privilege escalation via account takeover in... Critical Unreviewed

CVE-2024-13446 was published Mar 12, 2025

The InWave Jobs plugin for WordPress is vulnerable to privilege escalation via password reset in... Critical Unreviewed

CVE-2025-1315 was published Mar 7, 2025

The School Management System for Wordpress plugin for WordPress is vulnerable to privilege... High Unreviewed

CVE-2024-9658 was published Mar 7, 2025

The Homey theme for WordPress is vulnerable to authentication bypass in versions up to, and... High Unreviewed

CVE-2025-0749 was published Mar 7, 2025

The WP Real Estate Manager plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-1515 was published Mar 5, 2025

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed

CVE-2025-27658 was published Mar 5, 2025

Authentication bypass vulnerability exists in FutureNet AS series (Industrial Routers) provided... High Unreviewed

CVE-2025-24846 was published Mar 3, 2025

The Academist Membership plugin for WordPress is vulnerable to Privilege Escalation in all... Critical Unreviewed

CVE-2025-1671 was published Mar 1, 2025

The Alloggio Membership plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2025-1638 was published Mar 1, 2025

The SetSail Membership plugin for WordPress is vulnerable to in all versions up to, and... Critical Unreviewed

CVE-2025-1564 was published Mar 1, 2025

IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2... Critical Unreviewed

CVE-2025-0159 was published Feb 28, 2025

An Authentication Bypass vulnerability has been found in Trivision Camera NC227WF v5.8.0 from... High Unreviewed

CVE-2025-1739 was published Feb 27, 2025

The Login Me Now plugin for WordPress is vulnerable to authentication bypass in versions up to,... High Unreviewed

CVE-2025-1717 was published Feb 27, 2025

Authentication Bypass Using an Alternate Path or Channel vulnerability in Aldo Latino... Critical Unreviewed

CVE-2025-26966 was published Feb 25, 2025

Authentication bypass using an alternate path or channel issue exists in ”RoboForm Password... Moderate Unreviewed

CVE-2025-26700 was published Feb 17, 2025

The Dingtian DT-R0 Series is vulnerable to an exploit that allows attackers to bypass login... Critical Unreviewed

CVE-2025-1283 was published Feb 14, 2025

The WP Directorybox Manager plugin for WordPress is vulnerable to Authentication Bypass in all... Critical Unreviewed

CVE-2024-13182 was published Feb 13, 2025

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

212 advisories