Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,968
Erlang
39
GitHub Actions
38
Go
2,616
Maven
5,000+
npm
4,255
NuGet
760
pip
4,040
Pub
12
RubyGems
953
Rust
1,050
Swift
45
Unreviewed advisories
All unreviewed
5,000+

60 advisories

Loading
A Path Traversal vulnerability in the tftpsync/add and tftpsync/delete scripts allows a remote... High Unreviewed
CVE-2025-53880 was published Oct 30, 2025
Path Traversal vulnerability in Stefan Keller WooCommerce Payment Gateway for Saferpay allows... High Unreviewed
CVE-2025-48317 was published Sep 5, 2025
A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to... High Unreviewed
CVE-2025-8088 was published Aug 8, 2025
Path Traversal vulnerability in VaultDweller Leyka allows PHP Local File Inclusion. This issue... High Unreviewed
CVE-2025-52805 was published Jul 4, 2025
Path Traversal vulnerability in Creanncy Davenport - Versatile Blog and Magazine WordPress Theme... High Unreviewed
CVE-2025-52811 was published Jun 27, 2025
Path Traversal vulnerability in TMRW-studio Katerio - Magazine allows PHP Local File Inclusion.... High Unreviewed
CVE-2025-52810 was published Jun 27, 2025
Path Traversal vulnerability in yannisraft Aeroscroll Gallery – Infinite Scroll Image Gallery ... High Unreviewed
CVE-2025-49451 was published Jun 17, 2025
Path Traversal vulnerability in Mikado-Themes GrandPrix allows PHP Local File Inclusion. This... High Unreviewed
CVE-2025-49296 was published Jun 9, 2025
Path Traversal vulnerability in Mikado-Themes MediClinic allows PHP Local File Inclusion. This... High Unreviewed
CVE-2025-49295 was published Jun 9, 2025
Path Traversal vulnerability in Mikado-Themes Grill and Chow allows PHP Local File Inclusion.... High Unreviewed
CVE-2025-49297 was published Jun 9, 2025
Path Traversal vulnerability in Frenify Arlo allows PHP Local File Inclusion. This issue affects... High Unreviewed
CVE-2025-39475 was published Jun 9, 2025
Path Traversal: '.../...//' vulnerability in bslthemes Tastyc allows PHP Local File Inclusion... High Unreviewed
CVE-2025-27010 was published May 19, 2025
Path Traversal vulnerability in WHMPress WHMpress allows Path Traversal. This issue affects... High Unreviewed
CVE-2025-39491 was published May 16, 2025
Path Traversal vulnerability in WHMPress WHMpress allows Relative Path Traversal. This issue... High Unreviewed
CVE-2025-39492 was published May 16, 2025
Path Traversal vulnerability in ilmosys Open Close WooCommerce Store allows PHP Local File... High Unreviewed
CVE-2025-47649 was published May 7, 2025
Path Traversal vulnerability in Fernando Briano List category posts allows PHP Local File... High Unreviewed
CVE-2025-47636 was published May 7, 2025
Path Traversal: '.../...//' vulnerability in ThimPress Ivy School allows PHP Local File Inclusion... High Unreviewed
CVE-2025-39470 was published Apr 18, 2025
Path Traversal vulnerability in Trusty Plugins Shop Products Filter allows PHP Local File... High Unreviewed
CVE-2025-32585 was published Apr 11, 2025
SAP Capital Yield Tax Management has directory traversal vulnerability due to insufficient path... High Unreviewed
CVE-2025-30014 was published Apr 8, 2025
Path Traversal vulnerability in Bit Apps Bit Assist allows Path Traversal. This issue affects Bit... High Unreviewed
CVE-2025-30834 was published Apr 1, 2025
Path Traversal vulnerability in NotFound GetShop ecommerce allows Path Traversal. This issue... High Unreviewed
CVE-2024-54362 was published Mar 28, 2025
Path Traversal vulnerability in NotFound WizShop allows PHP Local File Inclusion. This issue... High Unreviewed
CVE-2025-25122 was published Mar 3, 2025
Path Traversal vulnerability in wpjobportal WP Job Portal allows PHP Local File Inclusion. This... High Unreviewed
CVE-2025-26935 was published Feb 25, 2025
A CWE-35 "Path Traversal" in maxtime/api/database/database.lua (setActive endpoint) in Q-Free... High Unreviewed
CVE-2025-26356 was published Feb 12, 2025
A CWE-35 "Path Traversal" in maxtime/api/database/database.lua (copy endpoint) in Q-Free MaxTime... High Unreviewed
CVE-2025-26354 was published Feb 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database