GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,395
Composer 4,383
Erlang 33
GitHub Actions 22
Go 2,141
Maven 5,314
npm 3,803
NuGet 687
pip 3,479
Pub 12
RubyGems 897
Rust 898
Swift 38

Unreviewed advisories

All unreviewed 245,615

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,278 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability exists in ChurchCRM 5.13.0 that allows an attacker to execute arbitrary... High Unreviewed

CVE-2025-1024 was published Feb 19, 2025

A vulnerability in the Netgear DGN2200 router with firmware version v1.0.0.46 and earlier permits... High Unreviewed

CVE-2024-57046 was published Feb 18, 2025

A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to hijack a user's... High Unreviewed

CVE-2025-0981 was published Feb 18, 2025

The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-13528 was published Feb 12, 2025

Tenda W18E V16.01.0.8(1625) suffers from authentication bypass in the web management portal... High Unreviewed

CVE-2024-46434 was published Feb 10, 2025

A denial-of-service vulnerability exists in CyberPower PowerPanel Business (PPB) 4.11.0. An... High Unreviewed

CVE-2024-11322 was published Jan 15, 2025

In OPPOStore iOS App, there's a possible escalation of privilege due to improper input validation. High Unreviewed

CVE-2024-1609 was published Dec 25, 2024

The AirVantage platform is vulnerable to an unauthorized attacker registering previously... High Unreviewed

CVE-2023-31279 was published Dec 21, 2024

In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed

CVE-2024-1610 was published Dec 18, 2024

The OAuth Single Sign On – SSO (OAuth Client) plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-10111 was published Dec 12, 2024

Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability High Unreviewed

CVE-2024-49076 was published Dec 12, 2024

NVIDIA UFM Enterprise, UFM Appliance, and UFM CyberAI contain a vulnerability where an attacker... High Unreviewed

CVE-2024-0130 was published Dec 6, 2024

The Registration Forms – User Registration Forms, Invitation-Based Registrations, Front-end User... High Unreviewed

CVE-2024-11293 was published Dec 4, 2024

An image with a version lower than the fuse version may potentially be booted lead to improper... High Unreviewed

CVE-2018-11952 was published Nov 26, 2024

Initial xbl_sec revision does not have all the debug policy features and critical checks. High Unreviewed

CVE-2016-10394 was published Nov 26, 2024

Wyze Cam v3 Cloud Infrastructure Improper Authentication Remote Code Execution Vulnerability.... High Unreviewed

CVE-2024-6248 was published Nov 22, 2024

**UNSUPPORTED WHEN ASSIGNED** The improper authentication vulnerability in the Zyxel P-6101C ADSL... High Unreviewed

CVE-2024-11494 was published Nov 20, 2024

Windows Task Scheduler Elevation of Privilege Vulnerability High Unreviewed

CVE-2024-49039 was published Nov 12, 2024

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress... High Unreviewed

CVE-2024-9946 was published Nov 6, 2024

The Heateor Social Login WordPress plugin for WordPress is vulnerable to authentication bypass in... High Unreviewed

CVE-2024-10020 was published Nov 6, 2024

Waybox Enel X web management API authentication could be bypassed and provide administrator’s... High Unreviewed

CVE-2023-29117 was published Nov 5, 2024

The Loginizer Security and Loginizer plugins for WordPress are vulnerable to authentication... High Unreviewed

CVE-2024-10097 was published Nov 5, 2024

The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in all... High Unreviewed

CVE-2024-10114 was published Nov 5, 2024

A vulnerability in Okta Verify for iOS versions 9.25.1 (beta) and 9.27.0 (including beta) allows... High Unreviewed

CVE-2024-10327 was published Oct 24, 2024

The ProfilePress Pro plugin for WordPress is vulnerable to authentication bypass in all versions... High Unreviewed

CVE-2024-9947 was published Oct 23, 2024

Previous 1 2 3 4 5 … 51 52 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,278 advisories