GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,235
Composer 4,349
Erlang 31
GitHub Actions 22
Go 2,117
Maven 5,289
npm 3,770
NuGet 680
pip 3,458
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,714

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

109 advisories

Filter by severity

Sort by

Least recently updated

Authentication Bypass Using an Alternate Path or Channel vulnerability in GST Electronics inohom... Critical Unreviewed

CVE-2024-6684 was published Aug 12, 2024

The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2024-7503 was published Aug 12, 2024

An authentication bypass vulnerability exists in the FOXMAN-UN/UNEM server / API Gateway... Critical Unreviewed

CVE-2024-2013 was published Jun 11, 2024

The N-central server is vulnerable to an authentication bypass of the user interface. This... Critical Unreviewed

CVE-2024-28200 was published Jul 1, 2024

The "Rich Filemanager" feature of Artica Proxy provides a web-based interface for file management... Critical Unreviewed

CVE-2024-2055 was published Mar 5, 2024

D-Link - CWE-288:Authentication Bypass Using an Alternate Path or Channel Critical Unreviewed

CVE-2024-38437 was published Jul 21, 2024

An attacker can directly request the ProGauge MAGLINK LX CONSOLE resource sub page with full... Critical Unreviewed

CVE-2024-43692 was published Sep 25, 2024

The WooCommerce Photo Reviews Premium plugin for WordPress is vulnerable to authentication bypass... Critical Unreviewed

CVE-2024-8277 was published Sep 11, 2024

The Wechat Social login plugin for WordPress is vulnerable to authentication bypass in versions... Critical Unreviewed

CVE-2024-9106 was published Oct 1, 2024

The WordPress & WooCommerce Affiliate Program plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2024-9289 was published Oct 1, 2024

The use of `Module._load()` can bypass the policy mechanism and require modules outside of the... Critical Unreviewed

CVE-2023-32002 was published Aug 21, 2023

The LatePoint plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-8943 was published Oct 8, 2024

The Pedalo Connector plugin for WordPress is vulnerable to authentication bypass in versions up... Critical Unreviewed

CVE-2024-9822 was published Oct 11, 2024

The UltimateAI plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2024-9105 was published Oct 16, 2024

: Authentication Bypass Using an Alternate Path or Channel vulnerability in sooskriszta, webforza... Critical Unreviewed

CVE-2024-49247 was published Oct 16, 2024

The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in all... Critical Unreviewed

CVE-2024-9893 was published Oct 16, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Najeeb Ahmad Simple... Critical Unreviewed

CVE-2024-49604 was published Oct 20, 2024

Authentication Bypass Using an Alternate Path or Channel vulnerability in Vivek Tamrakar WP REST... Critical Unreviewed

CVE-2024-49328 was published Oct 20, 2024

The Comments – wpDiscuz plugin for WordPress is vulnerable to authentication bypass in all... Critical Unreviewed

CVE-2024-9488 was published Oct 25, 2024

The Wux Blog Editor plugin for WordPress is vulnerable to authentication bypass in versions up to... Critical Unreviewed

CVE-2024-9931 was published Oct 26, 2024

The WatchTowerHQ plugin for WordPress is vulnerable to authentication bypass in versions up to,... Critical Unreviewed

CVE-2024-9933 was published Oct 26, 2024

The Extensions by HocWP Team plugin for WordPress is vulnerable to authentication bypass in... Critical Unreviewed

CVE-2024-9930 was published Oct 26, 2024

The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2024-9501 was published Oct 26, 2024

An authentication bypass vulnerability was found in Stilog Visual Planning 8. It allows an... Critical Unreviewed

CVE-2023-49231 was published Mar 29, 2024

A remote authentication bypass issue exists in some OneView APIs. Critical Unreviewed

CVE-2023-30909 was published Sep 14, 2023

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

109 advisories