GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,775

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

354 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in SMA100 allows a remote authenticated attacker with SSLVPN user privileges to... High Unreviewed

CVE-2025-32819 was published May 7, 2025

Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user... High Unreviewed

CVE-2025-1982 was published Apr 16, 2025

CWE-552: Files or Directories Accessible to External Parties vulnerability over https exists that... High Unreviewed

CVE-2025-2222 was published Apr 9, 2025

A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear... Moderate Unreviewed

CVE-2025-2651 was published Mar 23, 2025

The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web... Moderate Unreviewed

CVE-2024-13126 was published Mar 16, 2025

The ReadFile endpoint of the firmware for Mennekes Smart / Premium Chargingpoints can be abused... High Unreviewed

CVE-2025-22369 was published Mar 11, 2025

A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... High Unreviewed

CVE-2025-25266 was published Mar 11, 2025

A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... Moderate Unreviewed

CVE-2025-25267 was published Mar 11, 2025

A files or directories accessible to external parties vulnerability has been reported to affect... Moderate Unreviewed

CVE-2024-48864 was published Mar 7, 2025

A vulnerability was found in code-projects Blood Bank Management System 1.0. It has been rated as... Moderate Unreviewed

CVE-2025-2038 was published Mar 6, 2025

SeaCMS 13.3 was discovered to contain an arbitrary file read vulnerability in the... Moderate Unreviewed

CVE-2025-25799 was published Mar 6, 2025

Moodle has an arbitrary file read risk through pdfTeX High

CVE-2025-26525 was published for moodle/moodle (Composer) Feb 24, 2025

Files or Directories Accessible to External Parties vulnerability in Agito Computer Health4All... High Unreviewed

CVE-2024-12917 was published Feb 24, 2025

An attacker could obtain firmware files and reverse engineer their intended use leading to loss... Moderate Unreviewed

CVE-2025-23421 was published Feb 14, 2025

In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205),... High Unreviewed

CVE-2024-11629 was published Feb 12, 2025

An insecure direct object reference vulnerability in GitLab EE affecting all versions from 15.7... Moderate Unreviewed

CVE-2025-1042 was published Feb 12, 2025

Local File Inclusion vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to... High Unreviewed

CVE-2024-55214 was published Feb 7, 2025

Directory Traversal vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to... High Unreviewed

CVE-2024-55213 was published Feb 7, 2025

Sparkle Signing Checks Bypass High

CVE-2025-0509 was published for github.com/sparkle-project/Sparkle (Swift) Feb 4, 2025

Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2... Moderate Unreviewed

CVE-2024-10403 was published Feb 4, 2025

ChestnutCMS <=1.5.0 has an arbitrary file deletion vulnerability in contentcore.controller... High Unreviewed

CVE-2024-57452 was published Feb 3, 2025

Potential privilege escalation vulnerability in Revenera InstallShield versions 2022 R2 and 2021... High Unreviewed

CVE-2023-29080 was published Jan 30, 2025

IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2024-47106 was published Jan 18, 2025

Apache Linkis Metadata Query Service JDBC: JDBC Datasource Module with Mysql has file read vulnerability Moderate

CVE-2024-45627 was published for org.apache.linkis:linkis-metadata-query-service-jdbc (Maven) Jan 14, 2025

A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.80), SIPROTEC... High Unreviewed

CVE-2024-53649 was published Jan 14, 2025

Previous 12…15 Next

Previous 1 2 3 4 5 … 14 15 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

354 advisories