GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,960
Composer 4,873
Erlang 37
GitHub Actions 36
Go 2,520
Maven 5,961
npm 4,160
NuGet 738
pip 3,959
Pub 12
RubyGems 946
Rust 1,027
Swift 39

Unreviewed advisories

All unreviewed 270,817

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,666 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A flaw has been found in JSC R7 R7-Office Document Server up to 20250820. Impacted is an unknown... Moderate Unreviewed

CVE-2025-10777 was published Sep 22, 2025

A weakness has been identified in SeriaWei ZKEACMS up to 4.3. This issue affects the function... Moderate Unreviewed

CVE-2025-10766 was published Sep 22, 2025

Directory traversal vulnerability in Sync In server thru 1.1.1 allowing authenticated attackers... Moderate Unreviewed

CVE-2025-56869 was published Sep 22, 2025

Directory Traversal vulnerability in Papermark 0.20.0 and prior allows authenticated attackers to... Moderate Unreviewed

CVE-2025-57682 was published Sep 22, 2025

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2025-33032 was published Aug 29, 2025

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0.... Moderate Unreviewed

CVE-2025-10709 was published Sep 19, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-10708 was published Sep 19, 2025

In pfSense CE /usr/local/www/snort/snort_ip_reputation.php, the value of the iplist parameter is... Moderate Unreviewed

CVE-2025-34173 was published Sep 9, 2025

CISA Thorium does not adequately validate the paths of downloaded files via 'download_ephemeral'... Moderate Unreviewed

CVE-2025-35430 was published Sep 17, 2025

In pfSense CE /suricata/suricata_ip_reputation.php, the value of the iplist parameter is not... Moderate Unreviewed

CVE-2025-34176 was published Sep 9, 2025

The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates,... Moderate Unreviewed

CVE-2025-9215 was published Sep 17, 2025

The Developer Loggers for Simple History plugin for WordPress is vulnerable to Local File... Moderate Unreviewed

CVE-2025-10050 was published Sep 17, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43190 was published Sep 16, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43314 was published Sep 16, 2025

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-47265 was published Feb 13, 2025

wangxutech MoneyPrinterTurbo 1.2.6 allows path traversal via /api/v1/download/ URIs such as /api... Moderate Unreviewed

CVE-2025-49089 was published Sep 15, 2025

A vulnerability has been found in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element... Moderate Unreviewed

CVE-2025-10472 was published Sep 15, 2025

A vulnerability was identified in erjinzhi 10OA 1.0. Affected by this vulnerability is an unknown... Moderate Unreviewed

CVE-2025-10273 was published Sep 12, 2025

A vulnerability has been found in binary-husky gpt_academic up to 3.91. Impacted is the function... Moderate Unreviewed

CVE-2025-10236 was published Sep 11, 2025

A security flaw has been discovered in Display Painéis TGA up to 7.1.41. Affected by this issue... Moderate Unreviewed

CVE-2025-10245 was published Sep 11, 2025

A security vulnerability has been detected in kalcaddle kodbox 1.61. This affects the function... Moderate Unreviewed

CVE-2025-10233 was published Sep 11, 2025

A weakness has been identified in 299ko up to 2.0.0. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-10232 was published Sep 11, 2025

oasys v1.1 is vulnerable to Directory Traversal in ProcedureController. Moderate Unreviewed

CVE-2025-29592 was published Sep 10, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2025-47415 was published Sep 9, 2025

An attacker with authenticated and privileged access could modify the contents of a non-sensitive... Moderate Unreviewed

CVE-2025-48395 was published Sep 5, 2025

Previous1…107 Next

Previous 1 2 3 4 5 … 106 107 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,666 advisories