Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

591 advisories

Loading
There is a risk of unauthorized file uploads in GT-SoftControl and potential file overwrites due... Moderate Unreviewed
CVE-2025-2819 was published Mar 26, 2025
A vulnerability classified as critical has been found in PHPGurukul eLearning System 1.0.... Moderate Unreviewed
CVE-2025-2687 was published Mar 24, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-2606 was published Mar 21, 2025
A vulnerability was found in phplaozhang LzCMS-LaoZhangBoKeXiTong up to 1.1.4. It has been rated... Moderate Unreviewed
CVE-2025-2607 was published Mar 21, 2025
In version v12 of parisneo/lollms-webui, the 'Send file to AL' function allows uploading files... Moderate Unreviewed
CVE-2024-9920 was published Mar 20, 2025
An arbitrary file upload vulnerability in the component /admin/template.php of emlog pro 2.5.0... Moderate Unreviewed
CVE-2025-29405 was published Mar 19, 2025
IBM Security ReaQta 3.12 allows a privileged user to upload or transfer files of dangerous types... Moderate Unreviewed
CVE-2024-45644 was published Mar 19, 2025
A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical. This... Moderate Unreviewed
CVE-2025-2219 was published Mar 12, 2025
A vulnerability, which was classified as critical, has been found in zzskzy Warehouse Refinement... Moderate Unreviewed
CVE-2025-2216 was published Mar 12, 2025
A vulnerability, which was classified as critical, was found in zzskzy Warehouse Refinement... Moderate Unreviewed
CVE-2025-2115 was published Mar 9, 2025
REDAXO allows Arbitrary File Upload in the mediapool page Moderate
CVE-2025-27411 was published for redaxo/source (Composer) Mar 5, 2025
0xadik
A vulnerability has been found in shishuocms 1.1 and classified as critical. This vulnerability... Moderate Unreviewed
CVE-2025-1890 was published Mar 4, 2025
A vulnerability, which was classified as critical, was found in zj1983 zz up to 2024-8. This... Moderate Unreviewed
CVE-2025-1834 was published Mar 3, 2025
A vulnerability, which was classified as critical, has been found in zj1983 zz up to 2024-8. This... Moderate Unreviewed
CVE-2025-1818 was published Mar 2, 2025
A vulnerability has been found in Zorlan SkyCaiji 2.9 and classified as critical. This... Moderate Unreviewed
CVE-2025-1791 was published Mar 1, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-1598 was published Feb 24, 2025
A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-1590 was published Feb 23, 2025
A vulnerability classified as critical has been found in SourceCodester Best Employee Management... Moderate Unreviewed
CVE-2025-1593 was published Feb 23, 2025
A vulnerability was found in needyamin Library Card System 1.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-1355 was published Feb 16, 2025
A CWE-434 "Unrestricted Upload of File with Dangerous Type" in the template file uploads in Q... Moderate Unreviewed
CVE-2025-26350 was published Feb 12, 2025
The Zarinpal Paid Download WordPress plugin through 2.3 does not properly validate uploaded files... Moderate Unreviewed
CVE-2024-13544 was published Feb 11, 2025
A vulnerability has been found in SourceCodester Food Menu Manager 1.0 and classified as critical... Moderate Unreviewed
CVE-2025-1166 was published Feb 11, 2025
A vulnerability, which was classified as critical, was found in Lumsoft ERP 8. Affected is the... Moderate Unreviewed
CVE-2025-1165 was published Feb 11, 2025
DevDojo Voyager Arbitrary File Write Moderate
CVE-2024-55417 was published for tcg/voyager (Composer) Jan 30, 2025
A vulnerability classified as critical was found in needyamin image_gallery 1.0. This... Moderate Unreviewed
CVE-2025-0722 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database