Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,144
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

403 advisories

Loading
Zen Cart findPluginAdminPage Local File Inclusion Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5762 was published Aug 21, 2024
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed
CVE-2024-43261 was published Aug 19, 2024
The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel,... Moderate Unreviewed
CVE-2024-4359 was published Aug 12, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Local File Inclusion... High Unreviewed
CVE-2024-6589 was published Jul 25, 2024
This High severity File Inclusion vulnerability was introduced in versions 9.0.0, 9.1.0, 9.2.0, 9... High Unreviewed
CVE-2024-21687 was published Jul 16, 2024
Local File Inclusion vulnerability in LA-Studio LA-Studio Element Kit for Elementor via ... High Unreviewed
CVE-2024-37479 was published Jul 2, 2024
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Moderate Unreviewed
CVE-2024-35650 was published Jun 10, 2024
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed
CVE-2024-35629 was published Jun 4, 2024
Sourcecodester Gas Agency Management System v1.0 is vulnerable to arbitrary code execution via... High Unreviewed
CVE-2024-36569 was published Jun 3, 2024
An issue was discovered in linqi before 1.4.0.1 on Windows. There is /api/Cdn/GetFile local file... Critical Unreviewed
CVE-2024-33863 was published May 14, 2024
CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the... Moderate Unreviewed
CVE-2024-34314 was published May 7, 2024
A Local File Inclusion (LFI) vulnerability exists in the parisneo/lollms-webui application,... Critical Unreviewed
CVE-2024-1600 was published Apr 10, 2024
Arbitrary file upload vulnerability in Sourcecodester Complete E-Commerce Site v1.0, allows... Critical Unreviewed
CVE-2024-30849 was published Apr 5, 2024
A local file inclusion vulnerability in one of Trend Micro Apex Central's widgets could allow a... High Unreviewed
CVE-2023-52325 was published Jan 23, 2024
Remote file inclusion vulnerability in FireEye Central Management affecting version 9.1.1.956704.... Moderate Unreviewed
CVE-2024-0315 was published Jan 15, 2024
The HTML filter and csv-file search plugin for WordPress is vulnerable to Local File Inclusion in... High Unreviewed
CVE-2023-5099 was published Oct 31, 2023
The PHP to Page plugin for WordPress is vulnerable Local File Inclusion to Remote Code Execution... High Unreviewed
CVE-2023-5199 was published Oct 30, 2023
The Grid Plus plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and... High Unreviewed
CVE-2023-5250 was published Oct 30, 2023
The Dropbox Folder Share for WordPress is vulnerable to Local File Inclusion in versions up to,... Critical Unreviewed
CVE-2023-4488 was published Oct 20, 2023
An issue was discovered in Geomatika IsiGeo Web 6.0. It allows remote authenticated users to... Moderate Unreviewed
CVE-2023-23565 was published Aug 22, 2023
The Canto plugin for WordPress is vulnerable to Remote File Inclusion in versions up to, and... Critical Unreviewed
CVE-2023-3452 was published Aug 12, 2023
The wpForo Forum plugin for WordPress is vulnerable to Local File Include, Server-Side Request... High Unreviewed
CVE-2023-2249 was published Jun 9, 2023
PHP Remote File Inclusion in GitHub repository unilogies/bumsys prior to 2.1.1. High Unreviewed
CVE-2023-2551 was published May 5, 2023
AgileBio Electronic Lab Notebook v4.234 was discovered to contain a local file inclusion... High Unreviewed
CVE-2023-24217 was published Mar 7, 2023
PHP Remote File Inclusion in GitHub repository flatpressblog/flatpress prior to 1.3. Critical Unreviewed
CVE-2022-4606 was published Dec 18, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database