GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,948
Composer 4,873
Erlang 37
GitHub Actions 36
Go 2,519
Maven 5,959
npm 4,156
NuGet 736
pip 3,956
Pub 12
RubyGems 946
Rust 1,026
Swift 39

Unreviewed advisories

All unreviewed 270,233

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,981 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0.... Moderate Unreviewed

CVE-2025-10709 was published Sep 19, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-10708 was published Sep 19, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-10468 was published Sep 19, 2025

CISA Thorium does not adequately validate the paths of downloaded files via 'download_ephemeral'... Moderate Unreviewed

CVE-2025-35430 was published Sep 17, 2025

A directory traversal issue in Swetrix Web Analytics API 3.1.1 before 7d8b972 allows a remote... Critical Unreviewed

CVE-2025-59304 was published Sep 17, 2025

The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates,... Moderate Unreviewed

CVE-2025-9215 was published Sep 17, 2025

The Developer Loggers for Simple History plugin for WordPress is vulnerable to Local File... Moderate Unreviewed

CVE-2025-10050 was published Sep 17, 2025

Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains a pre-authentication file disclosure... High Unreviewed

CVE-2025-34185 was published Sep 16, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43314 was published Sep 16, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43190 was published Sep 16, 2025

A vulnerability has been found in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element... Moderate Unreviewed

CVE-2025-10472 was published Sep 15, 2025

wangxutech MoneyPrinterTurbo 1.2.6 allows path traversal via /api/v1/download/ URIs such as /api... Moderate Unreviewed

CVE-2025-49089 was published Sep 15, 2025

The The Hack Repair Guy's Plugin Archiver plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2025-10176 was published Sep 13, 2025

A vulnerability was identified in erjinzhi 10OA 1.0. Affected by this vulnerability is an unknown... Moderate Unreviewed

CVE-2025-10273 was published Sep 12, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. High Unreviewed

CVE-2025-58320 was published Sep 11, 2025

The User Meta – User Profile Builder and User management plugin plugin for WordPress is... High Unreviewed

CVE-2025-9693 was published Sep 11, 2025

A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server ... High Unreviewed

CVE-2025-9918 was published Sep 11, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. Critical Unreviewed

CVE-2025-58321 was published Sep 11, 2025

A vulnerability has been found in binary-husky gpt_academic up to 3.91. Impacted is the function... Moderate Unreviewed

CVE-2025-10236 was published Sep 11, 2025

A security flaw has been discovered in Display Painéis TGA up to 7.1.41. Affected by this issue... Moderate Unreviewed

CVE-2025-10245 was published Sep 11, 2025

A security vulnerability has been detected in kalcaddle kodbox 1.61. This affects the function... Moderate Unreviewed

CVE-2025-10233 was published Sep 11, 2025

A weakness has been identified in 299ko up to 2.0.0. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-10232 was published Sep 11, 2025

oasys v1.1 is vulnerable to Directory Traversal in ProcedureController. Moderate Unreviewed

CVE-2025-29592 was published Sep 10, 2025

The upload endpoint insufficiently validates the 'Upload-Key' request header. By supplying path... High Unreviewed

CVE-2025-41714 was published Sep 10, 2025

In pfSense CE /suricata/suricata_ip_reputation.php, the value of the iplist parameter is not... Moderate Unreviewed

CVE-2025-34176 was published Sep 9, 2025

Previous1…240 Next

Previous 1 2 3 4 5 … 239 240 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,981 advisories