Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,651
Maven
5,000+
npm
4,279
NuGet
760
pip
4,066
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

7,362 advisories

Loading
N-central < 2025.4 is vulnerable to authentication bypass via path traversal Critical Unreviewed
CVE-2025-11366 was published Nov 12, 2025
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... Moderate Unreviewed
CVE-2025-57712 was published Nov 7, 2025
Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22)... High Unreviewed
CVE-2025-63680 was published Nov 14, 2025
A security vulnerability has been detected in SimStudioAI sim up to... Moderate Unreviewed
CVE-2025-9801 was published Nov 14, 2025
An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1... Low Unreviewed
CVE-2025-54559 was published Nov 14, 2025
IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service ... High Unreviewed
CVE-2025-36236 was published Nov 14, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Unknown Unreviewed
CVE-2025-60242 was published Nov 6, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-60227 was published Oct 22, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-60217 was published Oct 22, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-58959 was published Oct 22, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-59566 was published Oct 22, 2025
podman kube play symlink traversal vulnerability High
CVE-2025-9566 was published for github.com/containers/podman/v4 (Go) Sep 4, 2025
Luap99
Credited to Luap99
The Data Tables Generator by Supsystic plugin for WordPress is vulnerable to arbitrary file... Moderate Unreviewed
CVE-2025-12089 was published Nov 13, 2025
DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file... High Unreviewed
CVE-2022-4982 was published Nov 13, 2025
JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model)... High Unreviewed
CVE-2016-15055 was published Nov 13, 2025
Longjing Technology BEMS API versions up to and including 1.21 contains an unauthenticated... High Unreviewed
CVE-2021-4463 was published Nov 13, 2025
Ozeki SMS Gateway versions up to and including 10.3.208 contain a path traversal vulnerability.... High Unreviewed
CVE-2023-7327 was published Nov 13, 2025
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... High Unreviewed
CVE-2025-11565 was published Nov 12, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-12382 was published Nov 12, 2025
Improper limitation of a pathname to a restricted directory ('path traversal') in Visual Studio... Moderate Unreviewed
CVE-2025-62449 was published Nov 11, 2025
Improper limitation of a pathname to a restricted directory ('path traversal') in OneDrive for... Moderate Unreviewed
CVE-2025-60722 was published Nov 11, 2025
A local server-side request forgery (SSRF) security issue exists within Studio 5000® Simulation... High Unreviewed
CVE-2025-11696 was published Nov 11, 2025
Due to a Path Traversal vulnerability in SAP Business Connector, an attacker authenticated as an... Moderate Unreviewed
CVE-2025-42894 was published Nov 11, 2025
Due to an Information Disclosure vulnerability in SAP NetWeaver Application Server Java, internal... Moderate Unreviewed
CVE-2025-42919 was published Nov 11, 2025
PacsOne Server version 6.6.2 (prior versions are likely affected) contains a directory traversal... High Unreviewed
CVE-2018-25124 was published Nov 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database