GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,811

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

207 advisories

Filter by severity

Sort by

Least recently updated

PingID Desktop prior to the latest released version 1.7.4 contains a vulnerability that can be... Moderate Unreviewed

CVE-2022-40725 was published Apr 25, 2023

An Authentication Bypass Using an Alternate Path or Channel vulnerability in the Schweitzer... High Unreviewed

CVE-2023-31152 was published May 10, 2023

The RegistrationMagic plugin for WordPress is vulnerable to authentication bypass in versions up... Critical Unreviewed

CVE-2023-2499 was published May 16, 2023

The BP Social Connect plugin for WordPress is vulnerable to authentication bypass in versions up... Critical Unreviewed

CVE-2023-2704 was published May 19, 2023

A proprietary protocol for iBoot devices is used for control and keepalive commands. The function... High Unreviewed

CVE-2022-47311 was published May 23, 2023

The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2023-2732 was published May 25, 2023

The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2023-2733 was published May 25, 2023

The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2023-2734 was published May 25, 2023

Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Bypass... Moderate Unreviewed

CVE-2022-36249 was published May 30, 2023

The User Email Verification for WooCommerce plugin for WordPress is vulnerable to authentication... Critical Unreviewed

CVE-2023-2781 was published Jun 3, 2023

The WP User Switch plugin for WordPress is vulnerable to authentication bypass in versions up to,... High Unreviewed

CVE-2023-2546 was published Jun 6, 2023

The MStore API plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2020-36713 was published Jun 7, 2023

The Wordable plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2020-36724 was published Jun 7, 2023

The Better Search plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up... Moderate Unreviewed

CVE-2021-4373 was published Jun 7, 2023

The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to authentication... Critical Unreviewed

CVE-2023-2986 was published Jun 8, 2023

The WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress... Critical Unreviewed

CVE-2023-2982 was published Jun 29, 2023

A security defect was identified in Foundry Issues. If a user was added to an issue on a resource... Moderate Unreviewed

CVE-2023-30946 was published Jun 29, 2023

The BookIt plugin for WordPress is vulnerable to authentication bypass in versions up to, and... Critical Unreviewed

CVE-2023-2834 was published Jun 30, 2023

The Web3 – Crypto wallet Login & NFT token gating plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2023-3249 was published Jun 30, 2023

The iBoot device’s basic discovery protocol assists in initial device configuration. The... High Unreviewed

CVE-2022-47320 was published Jul 6, 2023

AMI BMC contains a vulnerability in the IPMI handler, where an unauthenticated host is allowed to... Critical Unreviewed

CVE-2023-34335 was published Jul 6, 2023

The Stripe Payment Plugin for WooCommerce plugin for WordPress is vulnerable to authentication... Critical Unreviewed

CVE-2023-3162 was published Aug 31, 2023

Dover Fueling Solutions MAGLINK LX Web Console Configuration versions 2.5.1, 2.5.2, 2.5.3, 2.6.1... Critical Unreviewed

CVE-2023-41256 was published Sep 11, 2023

The WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2021-4353 was published Oct 20, 2023

IBM Sterling Partner Engagement Manager 6.1.2, 6.2.0, and 6.2.2 could allow a remote user to... High Unreviewed

CVE-2023-43045 was published Oct 23, 2023

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

207 advisories