Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,154
NuGet
736
pip
3,953
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,188 advisories

Loading
A path traversal vulnerability exists in multiple models of Selea Targa IP OCR-ANPR cameras,... Critical Unreviewed
CVE-2025-34022 was published Jun 20, 2025
Directory Traversal vulnerability in novel plus before v.5.1.0 allows a remote attacker to... Critical Unreviewed
CVE-2025-45890 was published Jun 20, 2025
A vulnerability was found in xataio Xata Agent up to 0.3.0. It has been classified as problematic... Moderate Unreviewed
CVE-2025-6283 was published Jun 20, 2025
A vulnerability was found in xlang-ai OpenAgents up to ff2e46440699af1324eb25655b622c4a131265bb... Moderate Unreviewed
CVE-2025-6282 was published Jun 20, 2025
A vulnerability has been found in OpenBMB XAgent up to 1.0.0 and classified as critical. Affected... Moderate Unreviewed
CVE-2025-6281 was published Jun 20, 2025
A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to... Moderate Unreviewed
CVE-2025-6280 was published Jun 20, 2025
Upsonic is vulnerable to Path Traversal attack through its os.path.join function Low
CVE-2025-6278 was published for upsonic (pip) Jun 19, 2025
DotVVM allows path traversal when deployed in Debug mode High
GHSA-6q65-j4jw-9cg8 was published for DotVVM (NuGet) Jun 19, 2025
A path transversal vulnerability in Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local... Moderate Unreviewed
CVE-2025-4661 was published Jun 19, 2025
Taylored webhook validation vulnerabilities Critical
GHSA-8g98-m4j9-qww5 was published for taylored (npm) Jun 18, 2025
OSV-SCALIBR's Container Image Unpacking Vulnerable to Arbitrary File Write via Path Traversal Moderate
CVE-2025-5981 was published for github.com/google/osv-scalibr (Go) Jun 18, 2025
Malayke
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-49879 was published Jun 17, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-49415 was published Jun 17, 2025
A path traversal vulnerability exists in the file dropoff functionality of ZendTo versions 6.15... Moderate Unreviewed
CVE-2025-34508 was published Jun 17, 2025
python-a2a has a path traversal in the create_workflow function Moderate
CVE-2025-6167 was published for python-a2a (pip) Jun 17, 2025
A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This... Moderate Unreviewed
CVE-2025-6166 was published Jun 17, 2025
A vulnerability, which was classified as critical, was found in Steel Browser up to 0.1.3. This... Moderate Unreviewed
CVE-2025-6152 was published Jun 17, 2025
Liferay Portal path traversal vulnerability with the downloading and installation of Xuggler High
CVE-2025-3594 was published for com.liferay:com.liferay.server.admin.web (Maven) Jun 16, 2025
A vulnerability was found in javahongxi whatsmars 2021.4.0. It has been rated as problematic.... Moderate Unreviewed
CVE-2025-6109 was published Jun 16, 2025
A vulnerability was found in hansonwang99 Spring-Boot-In-Action up to... Moderate Unreviewed
CVE-2025-6108 was published Jun 16, 2025
A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows... High Unreviewed
CVE-2025-5964 was published Jun 15, 2025
The Restrict File Access plugin for WordPress is vulnerable to Directory Traversal in all... Moderate Unreviewed
CVE-2025-6070 was published Jun 14, 2025
The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to... Critical Unreviewed
CVE-2025-6065 was published Jun 14, 2025
The UserPro - Community and User Profile WordPress Plugin plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-4187 was published Jun 14, 2025
Solon Vulnerable to Directory Traversal Moderate
CVE-2025-46096 was published for org.noear:solon-faas-luffy (Maven) Jun 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database