GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,657
Composer 5,011
Erlang 39
GitHub Actions 38
Go 2,651
Maven 6,108
npm 4,279
NuGet 760
pip 4,066
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,332

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,587 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22)... High Unreviewed

CVE-2025-63680 was published Nov 14, 2025

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service ... High Unreviewed

CVE-2025-36236 was published Nov 14, 2025

Ozeki SMS Gateway versions up to and including 10.3.208 contain a path traversal vulnerability.... High Unreviewed

CVE-2023-7327 was published Nov 13, 2025

DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file... High Unreviewed

CVE-2022-4982 was published Nov 13, 2025

JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model)... High Unreviewed

CVE-2016-15055 was published Nov 13, 2025

Longjing Technology BEMS API versions up to and including 1.21 contains an unauthenticated... High Unreviewed

CVE-2021-4463 was published Nov 13, 2025

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... High Unreviewed

CVE-2025-11565 was published Nov 12, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-12382 was published Nov 12, 2025

A local server-side request forgery (SSRF) security issue exists within Studio 5000® Simulation... High Unreviewed

CVE-2025-11696 was published Nov 11, 2025

PacsOne Server version 6.6.2 (prior versions are likely affected) contains a directory traversal... High Unreviewed

CVE-2018-25124 was published Nov 11, 2025

A Local File Inclusion (LFI) vulnerability has been identified in tQuadra CMS 4.2.1117. The issue... High Unreviewed

CVE-2025-60574 was published Nov 8, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-62630 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-58423 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-59171 was published Nov 7, 2025

Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-12490 was published Nov 6, 2025

Directory traversal vulnerability in NextChat thru 2.16.0 due to the WebDAV proxy failing to... High Unreviewed

CVE-2025-50735 was published Nov 3, 2025

The WooCommerce Designer Pro theme for WordPress is vulnerable to arbitrary file read in all... High Unreviewed

CVE-2025-10897 was published Oct 31, 2025

IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 21 could allow a remote attacker to... High Unreviewed

CVE-2025-3356 was published Oct 30, 2025

IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 21 could allow a remote attacker to... High Unreviewed

CVE-2025-3355 was published Oct 30, 2025

TRUfusion Enterprise through 7.10.4.0 uses the /trufusionPortal/getCobrandingData endpoint to... High Unreviewed

CVE-2025-27222 was published Oct 27, 2025

HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file... High Unreviewed

CVE-2025-12055 was published Oct 27, 2025

The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for... High Unreviewed

CVE-2025-10488 was published Oct 25, 2025

An issue was discovered in BAE SOCET GXP before 4.6.0.2. An attacker with the ability to interact... High Unreviewed

CVE-2025-54963 was published Oct 23, 2025

Path Traversal vulnerability in version 4.4.2236.1 of TESI Gandia Integra Total. This issue... High Unreviewed

CVE-2025-41073 was published Oct 23, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-60227 was published Oct 22, 2025

Previous1…104 Next

Previous 1 2 3 4 5 … 103 104 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,587 advisories