Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,179 advisories

Loading
Path traversal vulnerability in Samsung Members prior to version 5.0.00.11 allows attackers to... Moderate Unreviewed
CVE-2025-20949 was published May 7, 2025
Dell Storage Center - Dell Storage Manager, version(s) 20.0.21, contain(s) an Improper Limitation... Low Unreviewed
CVE-2025-22479 was published May 6, 2025
A vulnerability was found in 74CMS up to 3.33.0. It has been rated as problematic. Affected by... Moderate Unreviewed
CVE-2025-4329 was published May 6, 2025
An issue in the restores method (DataBackup.php) of foxcms v2.0.6 allows attackers to execute a... Moderate Unreviewed
CVE-2025-45239 was published May 5, 2025
foxcms v1.2.5 was discovered to contain an arbitrary file deletion vulnerability via the... Critical Unreviewed
CVE-2025-45238 was published May 5, 2025
The Envolve Plugin plugin for WordPress is vulnerable to arbitrary file deletion in all versions... Moderate Unreviewed
CVE-2024-11615 was published May 5, 2025
Output Messenger before 2.0.63 was vulnerable to a directory traversal attack through improper... Critical Unreviewed
CVE-2025-27920 was published May 5, 2025
A vulnerability, which was classified as critical, was found in AlanBinu007 Spring-Boot-Advanced... Moderate Unreviewed
CVE-2025-4175 was published May 2, 2025
IBM Concert Software 1.0.0 through 1.0.5 could allow a remote attacker to traverse directories on... Moderate Unreviewed
CVE-2024-55913 was published May 2, 2025
A vulnerability, which was classified as critical, was found in Wangshen SecGate 3600 2024.... Moderate Unreviewed
CVE-2025-4186 was published May 2, 2025
A vulnerability, which was classified as critical, has been found in Wangshen SecGate 3600 2024.... Moderate Unreviewed
CVE-2025-4185 was published May 2, 2025
A vulnerability was found in xiaowei1118 java_server up to... Moderate Unreviewed
CVE-2025-4178 was published May 2, 2025
Vite's server.fs.deny bypassed with /. for files under project root Moderate
CVE-2025-46565 was published for vite (npm) Apr 30, 2025
chienhm
A vulnerability, which was classified as problematic, has been found in Wangshen SecGate 3600... Moderate Unreviewed
CVE-2025-4078 was published Apr 29, 2025
Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the... High Unreviewed
CVE-2025-2817 was published Apr 29, 2025
Quick Agent V3 and Quick Agent V2 contain an issue with improper limitation of a pathname to a... High Unreviewed
CVE-2025-27937 was published Apr 28, 2025
Quick Agent V3 and Quick Agent V2 contain an issue with improper limitation of a pathname to a... Critical Unreviewed
CVE-2025-26692 was published Apr 28, 2025
In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was... Moderate Unreviewed
CVE-2025-46433 was published Apr 25, 2025
An issue in the Printer Manager Systm of Entrust Corp Printer Manager D3.18.4-3 and below allows... Moderate Unreviewed
CVE-2025-28354 was published Apr 25, 2025
The Mayosis Core plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to,... High Unreviewed
CVE-2025-1565 was published Apr 25, 2025
The WPMasterToolKit (WPMTK) – All in one plugin plugin for WordPress is vulnerable to Directory... High Unreviewed
CVE-2025-3300 was published Apr 24, 2025
The Database Toolset plugin is vulnerable to arbitrary file deletion due to insufficient file... Critical Unreviewed
CVE-2025-3065 was published Apr 24, 2025
A path traversal vulnerability in Commvault Command Center Innovation Release allows an... Critical Unreviewed
CVE-2025-34028 was published Apr 22, 2025
NVIDIA NeMo Framework contains a vulnerability where an attacker could cause an improper... High Unreviewed
CVE-2025-23250 was published Apr 22, 2025
io.jmix.localfs:jmix-localfs has a Path Traversal in Local File Storage Moderate
CVE-2025-32950 was published for io.jmix.localfs:jmix-localfs (Maven) Apr 22, 2025
shadowsock5 AnonySE26
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database