GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,004
Composer 4,876
Erlang 37
GitHub Actions 36
Go 2,522
Maven 5,974
npm 4,176
NuGet 741
pip 3,965
Pub 12
RubyGems 947
Rust 1,028
Swift 39

Unreviewed advisories

All unreviewed 271,170

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,668 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue in the component /importmould/deletefolder of Weaver Ecology v9.* allows authenticated... Moderate Unreviewed

CVE-2024-48071 was published Nov 19, 2024

A path traversal vulnerability has been reported to affect QuFirewall. If exploited, the... Moderate Unreviewed

CVE-2023-41290 was published Apr 26, 2024

Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in... Moderate Unreviewed

CVE-2024-49421 was published Dec 3, 2024

A path traversal vulnerability has been reported to affect QuFirewall. If exploited, the... Moderate Unreviewed

CVE-2023-41291 was published Apr 26, 2024

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2024-37043 was published Nov 22, 2024

A flaw has been found in JSC R7 R7-Office Document Server up to 20250820. Impacted is an unknown... Moderate Unreviewed

CVE-2025-10777 was published Sep 22, 2025

A weakness has been identified in SeriaWei ZKEACMS up to 4.3. This issue affects the function... Moderate Unreviewed

CVE-2025-10766 was published Sep 22, 2025

Directory traversal vulnerability in Sync In server thru 1.1.1 allowing authenticated attackers... Moderate Unreviewed

CVE-2025-56869 was published Sep 22, 2025

Directory Traversal vulnerability in Papermark 0.20.0 and prior allows authenticated attackers to... Moderate Unreviewed

CVE-2025-57682 was published Sep 22, 2025

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2025-33032 was published Aug 29, 2025

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0.... Moderate Unreviewed

CVE-2025-10709 was published Sep 19, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-10708 was published Sep 19, 2025

In pfSense CE /usr/local/www/snort/snort_ip_reputation.php, the value of the iplist parameter is... Moderate Unreviewed

CVE-2025-34173 was published Sep 9, 2025

CISA Thorium does not adequately validate the paths of downloaded files via 'download_ephemeral'... Moderate Unreviewed

CVE-2025-35430 was published Sep 17, 2025

In pfSense CE /suricata/suricata_ip_reputation.php, the value of the iplist parameter is not... Moderate Unreviewed

CVE-2025-34176 was published Sep 9, 2025

The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates,... Moderate Unreviewed

CVE-2025-9215 was published Sep 17, 2025

The Developer Loggers for Simple History plugin for WordPress is vulnerable to Local File... Moderate Unreviewed

CVE-2025-10050 was published Sep 17, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43190 was published Sep 16, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43314 was published Sep 16, 2025

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-47265 was published Feb 13, 2025

wangxutech MoneyPrinterTurbo 1.2.6 allows path traversal via /api/v1/download/ URIs such as /api... Moderate Unreviewed

CVE-2025-49089 was published Sep 15, 2025

A vulnerability has been found in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element... Moderate Unreviewed

CVE-2025-10472 was published Sep 15, 2025

A vulnerability was identified in erjinzhi 10OA 1.0. Affected by this vulnerability is an unknown... Moderate Unreviewed

CVE-2025-10273 was published Sep 12, 2025

A security flaw has been discovered in Display Painéis TGA up to 7.1.41. Affected by this issue... Moderate Unreviewed

CVE-2025-10245 was published Sep 11, 2025

A vulnerability has been found in binary-husky gpt_academic up to 3.91. Impacted is the function... Moderate Unreviewed

CVE-2025-10236 was published Sep 11, 2025

Previous1…107 Next

Previous 1 2 3 4 5 … 106 107 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,668 advisories