GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,381
Composer 4,822
Erlang 36
GitHub Actions 32
Go 2,413
Maven 5,809
npm 4,052
NuGet 723
pip 3,844
Pub 12
RubyGems 933
Rust 1,005
Swift 38

Unreviewed advisories

All unreviewed 264,840

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,937 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9... Critical Unreviewed

CVE-2025-54440 was published Jul 23, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9... Critical Unreviewed

CVE-2025-54442 was published Jul 23, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Samsung Electronics MagicINFO 9... High Unreviewed

CVE-2025-54439 was published Jul 23, 2025

In Pluck CMS 4.7.20-dev, an authenticated attacker can upload or create a crafted PHP file under... High Unreviewed

CVE-2025-46099 was published Jul 23, 2025

An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management... Critical Unreviewed

CVE-2025-40599 was published Jul 23, 2025

simogeo/filemanager arbitrary file upload vulnerability Critical

CVE-2025-46001 was published for simogeo/filemanager (Composer) Jul 18, 2025

A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the... High Unreviewed

CVE-2025-47187 was published Jul 23, 2025

There exists an auth bypass in Google Quickshare where an attacker can upload an unknown file... Moderate Unreviewed

CVE-2024-10668 was published Nov 7, 2024

The Responsive Thumbnail Slider plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed

CVE-2015-10144 was published Jul 25, 2025

The Droip plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type... High Unreviewed

CVE-2025-5831 was published Jul 25, 2025

The Ebook Store plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... Critical Unreviewed

CVE-2025-7437 was published Jul 25, 2025

The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... Critical Unreviewed

CVE-2025-7852 was published Jul 25, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Salesforce Tableau Server on... High Unreviewed

CVE-2025-52449 was published Jul 25, 2025

The e-School from Ventem has a Arbitrary File Upload vulnerability, allowing unauthenticated... High Unreviewed

CVE-2025-8323 was published Jul 30, 2025

The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... High Unreviewed

CVE-2025-7847 was published Jul 31, 2025

Multiple versions of PowerCMS allow unrestricted upload of dangerous files. If a product... Moderate Unreviewed

CVE-2025-54757 was published Jul 31, 2025

An unrestricted file upload vulnerability exists in Kaseya KServer versions prior to 6.3.0.2. The... Critical Unreviewed

CVE-2013-10034 was published Jul 31, 2025

An unauthenticated arbitrary file upload vulnerability exists in FlashChat versions 6.0.2 and 6.0... Critical Unreviewed

CVE-2013-10038 was published Jul 31, 2025

ClipBucket version 2.6 and earlier contains a critical vulnerability in the ofc_upload_image.php... Critical Unreviewed

CVE-2013-10040 was published Jul 31, 2025

A vulnerability classified as critical has been found in code-projects Online Ordering System 1.0... Moderate Unreviewed

CVE-2025-8256 was published Jul 28, 2025

A vulnerability was found in code-projects Exam Form Submission 1.0. It has been rated as... Moderate Unreviewed

CVE-2025-8255 was published Jul 28, 2025

The BerqWP – Automated All-In-One Page Speed Optimization for Core Web Vitals, Cache, CDN, Images... High Unreviewed

CVE-2025-7443 was published Aug 1, 2025

An unrestricted file upload vulnerability exists in MiniWeb HTTP Server <= Build 300 that allows... Critical Unreviewed

CVE-2013-10047 was published Aug 1, 2025

An unauthenticated arbitrary file upload vulnerability exists in Havalite CMS version 1.1.7 (and... Critical Unreviewed

CVE-2013-10055 was published Aug 1, 2025

/edit-user in webserver in OpenPLC Runtime 3 through 9cd8f1b allows authenticated users to upload... Moderate Unreviewed

CVE-2025-54962 was published Aug 4, 2025

Previous 1 2 … 114 115 116 117 118 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,937 advisories