GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,179

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,532 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The The Hack Repair Guy's Plugin Archiver plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2025-10176 was published Sep 13, 2025

The User Meta – User Profile Builder and User management plugin plugin for WordPress is... High Unreviewed

CVE-2025-9693 was published Sep 11, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. High Unreviewed

CVE-2025-58320 was published Sep 11, 2025

A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server ... High Unreviewed

CVE-2025-9918 was published Sep 11, 2025

The upload endpoint insufficiently validates the 'Upload-Key' request header. By supplying path... High Unreviewed

CVE-2025-41714 was published Sep 10, 2025

The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to write files to... High Unreviewed

CVE-2025-23343 was published Sep 9, 2025

A problem has been discovered in appRain CMF 4.0.5. An authenticated Path Traversal vulnerability... High Unreviewed

CVE-2025-41035 was published Sep 4, 2025

Anritsu ShockLine CHX File Parsing Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-7975 was published Sep 2, 2025

A path traversal vulnerability has been reported to affect VioStor. If a remote attacker gains an... High Unreviewed

CVE-2025-52861 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33036 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33033 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33038 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33037 was published Aug 29, 2025

Nagios XI < 2024R1.3.2 contains a remote code execution vulnerability by chaining two flaws: an... High Unreviewed

CVE-2024-13986 was published Aug 28, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-53588 was published Aug 28, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-54029 was published Aug 28, 2025

Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in... High Unreviewed

CVE-2025-54819 was published Aug 28, 2025

Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in... High Unreviewed

CVE-2025-58072 was published Aug 28, 2025

SPON IP Network Broadcast System, a digital audio transmission platform developed by SPON... High Unreviewed

CVE-2024-13982 was published Aug 28, 2025

Directory traversal vulnerability in AbanteCart version 1.4.2 allows unauthenticated attackers to... High Unreviewed

CVE-2025-50971 was published Aug 26, 2025

PerfreeBlog v4.0.11 has a directory traversal vulnerability in the getThemeFilesByName function. High Unreviewed

CVE-2025-29420 was published Aug 26, 2025

In MindManager Windows versions prior to 24.1.150, attackers could potentially write to... High Unreviewed

CVE-2024-56179 was published Aug 22, 2025

Barracuda products, confirmed in Spam & Virus Firewall, SSL VPN, and Web Application Firewall... High Unreviewed

CVE-2010-20109 was published Aug 21, 2025

Sockso Music Host Server versions <= 1.5 are vulnerable to a path traversal flaw that allows... High Unreviewed

CVE-2012-10061 was published Aug 20, 2025

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... High Unreviewed

CVE-2025-54926 was published Aug 20, 2025

Previous1…102 Next

Previous 1 2 3 4 5 … 101 102 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,532 advisories