Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,956
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,091 advisories

Loading
Microweber CMS API has authenticated local file inclusion vulnerability Moderate
CVE-2025-34076 was published for microweber/microweber (Composer) Jul 2, 2025
Sending a crafted SOAP "provision" operation message archive field within the Mobile Network... Moderate Unreviewed
CVE-2025-24329 was published Jul 2, 2025
Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network... Moderate Unreviewed
CVE-2025-24330 was published Jul 2, 2025
A vulnerability has been found in Dromara RuoYi-Vue-Plus 5.4.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6925 was published Jun 30, 2025
A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-6866 was published Jun 29, 2025
A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0... Moderate Unreviewed
CVE-2025-6854 was published Jun 29, 2025
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain... Moderate Unreviewed
CVE-2025-6855 was published Jun 29, 2025
A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been rated as critical.... Moderate Unreviewed
CVE-2025-6774 was published Jun 27, 2025
A vulnerability classified as critical was found in xiaoyunjie openvpn-cms-flask up to 1.2.7.... Moderate Unreviewed
CVE-2025-6776 was published Jun 27, 2025
HKUDS LightRAG allows Path Traversal via function upload_to_input_dir Moderate
CVE-2025-6773 was published for lightrag-hku (pip) Jun 27, 2025
A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical.... Moderate Unreviewed
CVE-2025-6772 was published Jun 27, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-53298 was published Jun 27, 2025
A vulnerability was found in yzcheng90 X-SpringBoot up to 5.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6731 was published Jun 27, 2025
PHPGurukul Pre-School Enrollment System Project v1.0 is vulnerable to Directory Traversal in... Moderate Unreviewed
CVE-2025-50350 was published Jun 26, 2025
A vulnerability classified as critical has been found in diyhi bbs 6.8. Affected is the function... Moderate Unreviewed
CVE-2025-6453 was published Jun 22, 2025
A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to... Moderate Unreviewed
CVE-2025-6280 was published Jun 20, 2025
A vulnerability was found in xataio Xata Agent up to 0.3.0. It has been classified as problematic... Moderate Unreviewed
CVE-2025-6283 was published Jun 20, 2025
A vulnerability has been found in OpenBMB XAgent up to 1.0.0 and classified as critical. Affected... Moderate Unreviewed
CVE-2025-6281 was published Jun 20, 2025
A vulnerability was found in xlang-ai OpenAgents up to ff2e46440699af1324eb25655b622c4a131265bb... Moderate Unreviewed
CVE-2025-6282 was published Jun 20, 2025
A path transversal vulnerability in Brocade Fabric OS 9.1.0 through 9.2.2 could allow a local... Moderate Unreviewed
CVE-2025-4661 was published Jun 19, 2025
OSV-SCALIBR's Container Image Unpacking Vulnerable to Arbitrary File Write via Path Traversal Moderate
CVE-2025-5981 was published for github.com/google/osv-scalibr (Go) Jun 18, 2025
Malayke
A path traversal vulnerability exists in the file dropoff functionality of ZendTo versions 6.15... Moderate Unreviewed
CVE-2025-34508 was published Jun 17, 2025
python-a2a has a path traversal in the create_workflow function Moderate
CVE-2025-6167 was published for python-a2a (pip) Jun 17, 2025
A vulnerability was found in frdel Agent-Zero up to 0.8.4. It has been rated as problematic. This... Moderate Unreviewed
CVE-2025-6166 was published Jun 17, 2025
A vulnerability, which was classified as critical, was found in Steel Browser up to 0.1.3. This... Moderate Unreviewed
CVE-2025-6152 was published Jun 17, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database