Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,179 advisories

Loading
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-32633 was published Apr 11, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-32629 was published Apr 11, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-32631 was published Apr 11, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-32587 was published Apr 11, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-32509 was published Apr 11, 2025
The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to Local... Critical Unreviewed
CVE-2025-2636 was published Apr 11, 2025
SurrealDB has local file read of 2-column TSV files via analyzers Low
GHSA-2cvj-g5r5-jrrg was published for surrealdb (Rust) Apr 10, 2025
cure53
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-31411 was published Apr 10, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Low Unreviewed
CVE-2025-32205 was published Apr 10, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-32209 was published Apr 10, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-30582 was published Apr 10, 2025
Umbraco has a Management API Vulnerability to Path Traversal With Authenticated Users High
CVE-2025-32017 was published for Umbraco.Cms (NuGet) Apr 9, 2025
ggisz
ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Limitation... High Unreviewed
CVE-2025-30290 was published Apr 8, 2025
Multiple vulnerabilities exist in the web-based management interface of AOS-10 GW and AOS-8... Moderate Unreviewed
CVE-2025-27085 was published Apr 8, 2025
An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability ... High Unreviewed
CVE-2025-25254 was published Apr 8, 2025
A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web... Critical Unreviewed
CVE-2024-41792 was published Apr 8, 2025
The Sreamit theme for WordPress is vulnerable to arbitrary file downloads in all versions up to,... Moderate Unreviewed
CVE-2025-2519 was published Apr 8, 2025
A vulnerability, which was classified as critical, was found in zhangyanbo2007 youkefu 4.2.0.... Moderate Unreviewed
CVE-2025-3381 was published Apr 7, 2025
The IntelliSpace portal application utilizes .NET Remoting for its functionality. The... High Unreviewed
CVE-2025-3424 was published Apr 7, 2025
The Drag and Drop Multiple File Upload for WooCommerce plugin for WordPress is vulnerable to... Critical Unreviewed
CVE-2025-2941 was published Apr 7, 2025
Path traversal vulnerability in the DFS module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2025-31174 was published Apr 7, 2025
A vulnerability classified as problematic has been found in fumiao opencms up to... Moderate Unreviewed
CVE-2025-3317 was published Apr 6, 2025
The Countdown, Coming Soon, Maintenance – Countdown & Clock plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-2270 was published Apr 4, 2025
A vulnerability has been found in JFinal CMS up to 5.2.4 and classified as problematic. Affected... Moderate Unreviewed
CVE-2025-3214 was published Apr 4, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-31825 was published Apr 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database