GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,904
Composer 4,871
Erlang 37
GitHub Actions 36
Go 2,504
Maven 5,949
npm 4,149
NuGet 735
pip 3,949
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,762

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,182 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

files-bucket-server vulnerable to Directory Traversal High

CVE-2025-8021 was published for files-bucket-server (npm) Jul 23, 2025

Safearchive Path Traversal vulnerability Moderate

CVE-2024-10389 was published for github.com/google/safearchive (Go) Nov 4, 2024

A vulnerability was found in yanyutao0402 ChanCMS up to 3.1.2. It has been rated as critical.... Moderate Unreviewed

CVE-2025-8132 was published Jul 25, 2025

The hiWeb Export Posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all... High Unreviewed

CVE-2025-7640 was published Jul 25, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-52452 was published Jul 25, 2025

The Kallyas theme for WordPress is vulnerable to arbitrary folder deletion due to insufficient... High Unreviewed

CVE-2025-6989 was published Jul 26, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS... High Unreviewed

CVE-2025-53080 was published Jul 29, 2025

An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create... Moderate Unreviewed

CVE-2025-53081 was published Jul 29, 2025

MapTiler Tileserver-php v2.0 is vulnerable to Directory Traversal. The renderTile function within... High Unreviewed

CVE-2025-44137 was published Jul 29, 2025

A path handling issue was addressed with improved validation. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43191 was published Jul 30, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43206 was published Jul 30, 2025

Bugsink path traversal via event_id in ingestion High

CVE-2025-54433 was published for bugsink (pip) Jul 29, 2025

A path handling issue was addressed with improved validation. This issue is fixed in macOS... High Unreviewed

CVE-2025-43196 was published Jul 30, 2025

A path handling issue was addressed with improved validation. This issue is fixed in macOS... Moderate Unreviewed

CVE-2025-43250 was published Jul 30, 2025

A vulnerability was found in openviglet shio up to 0.3.8. It has been rated as critical. This... Moderate Unreviewed

CVE-2025-8343 was published Jul 31, 2025

A path traversal issue exists in file uploading feature of multiple versions of PowerCMS.... Moderate Unreviewed

CVE-2025-41396 was published Jul 31, 2025

A path traversal issue exists in backup and restore feature of multiple versions of PowerCMS. A... High Unreviewed

CVE-2025-46359 was published Jul 31, 2025

The HT Mega – Absolute Addons For Elementor plugin for WordPress is vulnerable to Path Traversal... Moderate Unreviewed

CVE-2025-8151 was published Jul 31, 2025

A path traversal vulnerability exists in A10 Networks AX Loadbalancer versions 2.6.1-GR1-P5, 2.7... High Unreviewed

CVE-2014-125125 was published Jul 31, 2025

Marvell QConvergeConsole compressConfigFiles Directory Traversal Information Disclosure and... Critical Unreviewed

CVE-2025-8426 was published Jul 31, 2025

A vulnerability was found in code-projects Document Management System 1.0 and classified as... Moderate Unreviewed

CVE-2025-8433 was published Aug 1, 2025

Alpine iLX-507 Command Injection Remote Code Execution. This vulnerability allows network... High Unreviewed

CVE-2025-8480 was published Aug 1, 2025

A local privilege escalation vulnerability exists in Agnitum Outpost Internet Security 8.1 that... High Unreviewed

CVE-2013-10046 was published Aug 1, 2025

A path traversal vulnerability exists in the Netgear SPH200D Skype phone firmware versions <= 1.0... Moderate Unreviewed

CVE-2013-10063 was published Aug 1, 2025

A directory traversal vulnerability exists in Linksys router's web interface (tested on the E1500... Moderate Unreviewed

CVE-2013-10062 was published Aug 1, 2025

Previous 1…281…288 Next

Previous 1 2 … 279 280 281 282 283 … 287 288 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,182 advisories