Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,814
Erlang
36
GitHub Actions
32
Go
2,399
Maven
5,000+
npm
4,040
NuGet
722
pip
3,829
Pub
12
RubyGems
932
Rust
1,002
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

267 advisories

Loading
The Melapress Login Security plugin for WordPress is vulnerable to Authentication Bypass due to... Critical Unreviewed
CVE-2025-6895 was published Jul 26, 2025
An authentication vulnerability exists in the LG Innotek camera model LNV5110R firmware that... High Unreviewed
CVE-2025-7742 was published Jul 25, 2025
An issue was discovered in AlertEnterprise Guardian 4.1.14.2.2.1. One can bypass manager approval... High Unreviewed
CVE-2025-31512 was published Jul 22, 2025
The Orion Login with SMS plugin for WordPress is vulnerable to Authentication Bypass in all... High Unreviewed
CVE-2025-7692 was published Jul 22, 2025
The LoginPress Pro plugin for WordPress is vulnerable to authentication bypass in all versions up... Critical Unreviewed
CVE-2025-7444 was published Jul 18, 2025
The Nokri - Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation... High Unreviewed
CVE-2025-1313 was published Jul 12, 2025
The AXIS Camera Station Server had a flaw that allowed to bypass authentication that is normally... Moderate Unreviewed
CVE-2025-30026 was published Jul 11, 2025
Nokia Single RAN AirScale baseband allows an authenticated administrative user access to all... High Unreviewed
CVE-2025-24332 was published Jul 2, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in ThemesGrove WP SmartPay... High Unreviewed
CVE-2025-25171 was published Jun 27, 2025
The Simple Payment plugin for WordPress is vulnerable to Authentication Bypass in versions 1.3.6... Critical Unreviewed
CVE-2025-6688 was published Jun 27, 2025
Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2... High Unreviewed
CVE-2025-32976 was published Jun 26, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in Drupal Enterprise MFA -... Moderate Unreviewed
CVE-2025-6675 was published Jun 26, 2025
Insufficient policy enforcement in Loader in Google Chrome prior to 138.0.7204.49 allowed a... Moderate Unreviewed
CVE-2025-6556 was published Jun 24, 2025
Sony XAV-AX8500 Bluetooth ERTM Channel Authentication Bypass Vulnerability. This vulnerability... Moderate Unreviewed
CVE-2025-5820 was published Jun 23, 2025
An authentication bypass vulnerability exists in KCM3100 Ver1.4.2 and earlier. If this... Critical Unreviewed
CVE-2025-51381 was published Jun 18, 2025
The Workreap plugin for WordPress, used by the Workreap - Freelance Marketplace WordPress Theme,... Critical Unreviewed
CVE-2025-4973 was published Jun 12, 2025
CyberData 011209 Intercom could allow an unauthenticated user access to the Web Interface through... Critical Unreviewed
CVE-2025-30184 was published Jun 10, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in PayU India PayU India... Critical Unreviewed
CVE-2025-31022 was published Jun 9, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in miniOrange Password... High Unreviewed
CVE-2025-31019 was published Jun 9, 2025
Vulnerability that cards can call unauthorized APIs in the FRS process Impact: Successful... Moderate Unreviewed
CVE-2025-48904 was published Jun 6, 2025
The Golo - City Travel Guide WordPress Theme theme for WordPress is vulnerable to privilege... Critical Unreviewed
CVE-2025-4797 was published Jun 3, 2025
The Browse As plugin for WordPress is vulnerable to authentication bypass in versions up to, and... High Unreviewed
CVE-2025-5190 was published May 30, 2025
In Teltonika Networks Remote Management System (RMS), it is possible to perform account pre... High Unreviewed
CVE-2025-4687 was published May 29, 2025
The admin panel in the TeleMessage service through 2025-05-05 allows attackers to discover... Moderate Unreviewed
CVE-2025-48926 was published May 28, 2025
Authentication Bypass Using an Alternate Path or Channel vulnerability in mediaticus Subaccounts... High Unreviewed
CVE-2025-47461 was published May 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database