Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,790
Erlang
36
GitHub Actions
29
Go
2,370
Maven
5,000+
npm
3,994
NuGet
720
pip
3,783
Pub
12
RubyGems
927
Rust
982
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,778 advisories

Loading
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-49303 was published Jul 4, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-28980 was published Jul 4, 2025
The JKDEVKIT plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient... High Unreviewed
CVE-2025-2932 was published Jul 3, 2025
The Vikinger theme for WordPress is vulnerable to arbitrary file deletion due to insufficient... High Unreviewed
CVE-2025-4946 was published Jul 2, 2025
Path traversal in WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote... High Unreviewed
CVE-2025-27022 was published Jul 2, 2025
Sending a crafted SOAP "provision" operation message archive field within the Mobile Network... Moderate Unreviewed
CVE-2025-24329 was published Jul 2, 2025
Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network... Moderate Unreviewed
CVE-2025-24330 was published Jul 2, 2025
The Home Villas | Real Estate WordPress Theme theme for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2025-5014 was published Jul 2, 2025
A path traversal vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646. High Unreviewed
CVE-2025-37098 was published Jul 1, 2025
Hikvision Streaming Media Management Server v2.3.5 uses default credentials that allow remote... High Unreviewed
CVE-2025-34058 was published Jul 1, 2025
A vulnerability has been found in Dromara RuoYi-Vue-Plus 5.4.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6925 was published Jun 30, 2025
A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-6866 was published Jun 29, 2025
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain... Moderate Unreviewed
CVE-2025-6855 was published Jun 29, 2025
A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0... Moderate Unreviewed
CVE-2025-6854 was published Jun 29, 2025
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to... Moderate Unreviewed
CVE-2025-6853 was published Jun 29, 2025
The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all... High Unreviewed
CVE-2025-6379 was published Jun 28, 2025
The Game Users Share Buttons plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed
CVE-2025-6755 was published Jun 28, 2025
A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been rated as critical.... Moderate Unreviewed
CVE-2025-6774 was published Jun 27, 2025
A vulnerability classified as critical was found in xiaoyunjie openvpn-cms-flask up to 1.2.7.... Moderate Unreviewed
CVE-2025-6776 was published Jun 27, 2025
A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical.... Moderate Unreviewed
CVE-2025-6772 was published Jun 27, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-53298 was published Jun 27, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-49448 was published Jun 27, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-24765 was published Jun 27, 2025
A vulnerability was found in yzcheng90 X-SpringBoot up to 5.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6731 was published Jun 27, 2025
A path traversal vulnerability in System Information Reporter (SIR) 1.0.3 and prior allowed an... Low Unreviewed
CVE-2025-3722 was published Jun 26, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database