Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

292 advisories

Loading
A flaw was found in OpenShift's Telemeter. If certain conditions are in place, an attacker can... High Unreviewed
CVE-2024-5037 was published Jun 5, 2024
Authentication Bypass by Spoofing vulnerability in miniorange Malware Scanner allows Accessing... Moderate Unreviewed
CVE-2023-52176 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in FeedbackWP Rate my Post – WP Rating System... Moderate Unreviewed
CVE-2023-51667 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in Metagauss RegistrationMagic allows Accessing... Moderate Unreviewed
CVE-2023-51543 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Branda allows Accessing Functionality... Moderate Unreviewed
CVE-2023-51542 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in yonifre Maspik – Spam blacklist allows... Moderate Unreviewed
CVE-2023-48271 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in wpdevart Coming soon and Maintenance mode... Low Unreviewed
CVE-2023-49741 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in 10up Restricted Site Access allows Accessing... Moderate Unreviewed
CVE-2023-48753 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in WP Maintenance allows Accessing Functionality... Low Unreviewed
CVE-2023-47769 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in pluginkollektiv Antispam Bee allows Accessing... Moderate Unreviewed
CVE-2023-41134 was published Jun 4, 2024
Authentication Bypass by Spoofing vulnerability in IP2Location Download IP2Location Country... Moderate Unreviewed
CVE-2023-37865 was published Jun 4, 2024
Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System ... Moderate Unreviewed
CVE-2024-20363 was published May 22, 2024
Authentication Bypass by Spoofing vulnerability in helderk Maintenance Mode allows Functionality... Low Unreviewed
CVE-2024-32708 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Royal Royal Elementor Addons allows... Moderate Unreviewed
CVE-2024-32786 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in RafflePress Giveaways and Contests allows... Moderate Unreviewed
CVE-2024-32827 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in webtechideas WTI Like Post allows... Moderate Unreviewed
CVE-2024-33917 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WP Happy Coders Comments Like Dislike allows... Moderate Unreviewed
CVE-2024-25906 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in WPMU DEV Defender Security allows... Moderate Unreviewed
CVE-2024-25595 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Pippin Williamson CGC Maintenance Mode allows... Low Unreviewed
CVE-2024-30480 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Stefano Lissa & The Newsletter Team Newsletter... Moderate Unreviewed
CVE-2024-30522 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Filipe Seabra WordPress Manutenção allows... Low Unreviewed
CVE-2024-22139 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in Wpmet Wp Ultimate Review allows Functionality... Moderate Unreviewed
CVE-2024-21746 was published May 17, 2024
Authentication Bypass by Spoofing vulnerability in LionScripts IP Blocker Lite allows... Moderate Unreviewed
CVE-2024-30479 was published May 17, 2024
Grafana Escalation from admin to server admin when auth proxy is used High
CVE-2022-35957 was published for github.com/grafana/grafana (Go) May 14, 2024
OctoPrint has an Authentication Bypass via X-Forwarded-For Header when autologinLocal is enabled High
CVE-2024-32977 was published for OctoPrint (pip) May 14, 2024
jacopotediosi
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database