GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,508
Composer 4,968
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,100
npm 4,255
NuGet 760
pip 4,038
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,722

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,710 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in jeecgboot jeewx-boot up to... Moderate Unreviewed

CVE-2025-12626 was published Nov 3, 2025

The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2025-8385 was published Oct 31, 2025

Allegra DatabaseBackupBL Directory Traversal Information Disclosure Vulnerability. This... Moderate Unreviewed

CVE-2025-11466 was published Oct 29, 2025

A flaw has been found in OpenWGA 7.11.12 Build 737. This affects an unknown function of the file... Moderate Unreviewed

CVE-2025-12250 was published Oct 27, 2025

A weakness has been identified in givanz Vvveb up to 1.0.7.3. This issue affects the function... Moderate Unreviewed

CVE-2025-12203 was published Oct 27, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2025-60217 was published Oct 22, 2025

A vulnerability was detected in e107 CMS up to 2.3.3. This impacts an unknown function of the... Moderate Unreviewed

CVE-2025-11941 was published Oct 19, 2025

A vulnerability was determined in ChurchCRM up to 5.18.0. This issue affects some unknown... Moderate Unreviewed

CVE-2025-11939 was published Oct 19, 2025

A vulnerability was found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected by this... Moderate Unreviewed

CVE-2025-11914 was published Oct 17, 2025

A vulnerability has been found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected by... Moderate Unreviewed

CVE-2025-11913 was published Oct 17, 2025

An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability ... Moderate Unreviewed

CVE-2025-53951 was published Oct 16, 2025

A directory traversal vulnerability exists in TMUI that allows an authenticated attacker to... Moderate Unreviewed

CVE-2025-54755 was published Oct 15, 2025

Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and... Moderate Unreviewed

CVE-2025-37144 was published Oct 14, 2025

Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and... Moderate Unreviewed

CVE-2025-37145 was published Oct 14, 2025

Path traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4... Moderate Unreviewed

CVE-2025-10986 was published Oct 14, 2025

SAP Commerce Cloud contains a path traversal vulnerability that may allow users to access web... Moderate Unreviewed

CVE-2025-42906 was published Oct 14, 2025

A vulnerability was determined in RainyGao DocSys up to 2.02.36. Affected by this vulnerability... Moderate Unreviewed

CVE-2025-11631 was published Oct 12, 2025

A vulnerability was found in RainyGao DocSys up to 2.02.36. Affected is the function... Moderate Unreviewed

CVE-2025-11630 was published Oct 12, 2025

A weakness has been identified in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element... Moderate Unreviewed

CVE-2025-11607 was published Oct 11, 2025

The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in... Moderate Unreviewed

CVE-2025-9950 was published Oct 11, 2025

Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers... Moderate Unreviewed

CVE-2025-21048 was published Oct 10, 2025

Newforma Info Exchange (NIX) '/UserWeb/Common/MarkupServices.ashx' 'StreamStampImage' accepts an... Moderate Unreviewed

CVE-2025-35056 was published Oct 9, 2025

Newforma Info Exchange (NIX) accepts requests to '/UserWeb/Common/MarkupServices.ashx' specifying... Moderate Unreviewed

CVE-2025-35053 was published Oct 9, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43934 was published Oct 7, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43889 was published Oct 7, 2025

Previous1…109 Next

Previous 1 2 3 4 5 … 108 109 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,710 advisories