GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,835
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,926
npm 4,126
NuGet 735
pip 3,943
Pub 12
RubyGems 945
Rust 1,021
Swift 39

Unreviewed advisories

All unreviewed 269,174

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,022 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

File Upload vulnerability in SueamCMS v.0.1.2 allows a remote attacker to execute arbitrary code... Critical Unreviewed

CVE-2025-55835 was published Sep 12, 2025

A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is... Moderate Unreviewed

CVE-2025-9847 was published Sep 10, 2025

The Responsive Filterable Portfolio plugin for WordPress is vulnerable to arbitrary file uploads... High Unreviewed

CVE-2025-10049 was published Sep 10, 2025

The Import any XML, CSV or Excel File to WordPress plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-10001 was published Sep 10, 2025

Insufficient filename validation in Ivanti Endpoint Manager before 2024 SU3 Security Update 1 and... High Unreviewed

CVE-2025-9712 was published Sep 9, 2025

Insufficient filename validation in Ivanti Endpoint Manager before 2024 SU3 Security Update 1 and... High Unreviewed

CVE-2025-9872 was published Sep 9, 2025

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network... High Unreviewed

CVE-2025-20287 was published Sep 9, 2025

The Doccure theme for WordPress is vulnerable to arbitrary file uploads due to missing file type... Critical Unreviewed

CVE-2025-9113 was published Sep 8, 2025

The Doccure theme for WordPress is vulnerable to arbitrary file uploads due to incorrect file... High Unreviewed

CVE-2025-9112 was published Sep 8, 2025

N8N's Chat Trigger component is vulnerable to XSS High

CVE-2025-56265 was published for @n8n/n8n-nodes-langchain (npm) Sep 8, 2025

A security flaw has been discovered in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed

CVE-2025-10085 was published Sep 8, 2025

A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. Affected... Moderate Unreviewed

CVE-2025-10083 was published Sep 8, 2025

A flaw has been found in SourceCodester Pet Management System 1.0. This impacts an unknown... Moderate Unreviewed

CVE-2025-10081 was published Sep 8, 2025

The Multi Step Form plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed

CVE-2025-9515 was published Sep 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image... Critical Unreviewed

CVE-2025-58819 was published Sep 5, 2025

Vaadin Platform possible file bypass via upload validation on the server-side Moderate

GHSA-c7v7-rqfm-f44j was published for com.vaadin:vaadin (Maven) Sep 4, 2025

Vaadin Flow Components possible file bypass via upload validation on the server-side Moderate

GHSA-94g8-xv23-7656 was published for com.vaadin:vaadin-upload-flow (Maven) Sep 4, 2025

Vaadin Framework possible file bypass via upload validation on the server-side Moderate

CVE-2025-9467 was published for com.vaadin:vaadin-server (Maven) Sep 4, 2025

The Make Connector plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2025-6085 was published Sep 4, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Mojoomla School Management... Critical Unreviewed

CVE-2025-31100 was published Aug 31, 2025

The Booster for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-13342 was published Aug 29, 2025

A File Upload Validation Bypass vulnerability has been identified in the HCL BigFix SM, where the... Moderate Unreviewed

CVE-2025-31979 was published Aug 28, 2025

FormCms avatar upload feature has a stored cross-site scripting (XSS) vulnerability Moderate

CVE-2025-56236 was published for FormCMS (NuGet) Aug 28, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in add-ons.org Drag and Drop File... Critical Unreviewed

CVE-2025-49387 was published Aug 28, 2025

SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) allows a remote unauthenticated... Critical Unreviewed

CVE-2025-53970 was published Aug 28, 2025

Previous1…121 Next

Previous 1 2 3 4 5 … 120 121 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,022 advisories