GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,657
Composer 5,011
Erlang 39
GitHub Actions 38
Go 2,651
Maven 6,108
npm 4,279
NuGet 760
pip 4,066
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,293

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,587 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22)... High Unreviewed

CVE-2025-63680 was published Nov 14, 2025

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service ... High Unreviewed

CVE-2025-36236 was published Nov 14, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-60227 was published Oct 22, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-58959 was published Oct 22, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-59566 was published Oct 22, 2025

Ozeki SMS Gateway versions up to and including 10.3.208 contain a path traversal vulnerability.... High Unreviewed

CVE-2023-7327 was published Nov 13, 2025

DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file... High Unreviewed

CVE-2022-4982 was published Nov 13, 2025

JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model)... High Unreviewed

CVE-2016-15055 was published Nov 13, 2025

Longjing Technology BEMS API versions up to and including 1.21 contains an unauthenticated... High Unreviewed

CVE-2021-4463 was published Nov 13, 2025

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... High Unreviewed

CVE-2025-11565 was published Nov 12, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-12382 was published Nov 12, 2025

A local server-side request forgery (SSRF) security issue exists within Studio 5000® Simulation... High Unreviewed

CVE-2025-11696 was published Nov 11, 2025

PacsOne Server version 6.6.2 (prior versions are likely affected) contains a directory traversal... High Unreviewed

CVE-2018-25124 was published Nov 11, 2025

supOS 5.0 allows api/image/download?fileName=../ directory traversal for reading files. High Unreviewed

CVE-2024-39937 was published Jul 5, 2024

A Local File Inclusion (LFI) vulnerability has been identified in tQuadra CMS 4.2.1117. The issue... High Unreviewed

CVE-2025-60574 was published Nov 8, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-62630 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-58423 was published Nov 7, 2025

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file... High Unreviewed

CVE-2025-59171 was published Nov 7, 2025

A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled... High Unreviewed

CVE-2025-8941 was published Aug 13, 2025

Netgate pfSense CE Suricata Path Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-12490 was published Nov 6, 2025

Path traversal attack is possible and write outside of the intended directory and may access... High Unreviewed

CVE-2024-25567 was published Mar 22, 2024

Nagios XI < 2024R1.3.2 contains a remote code execution vulnerability by chaining two flaws: an... High Unreviewed

CVE-2024-13986 was published Aug 28, 2025

An incomplete fix has been identified for CVE-2025-23084 in Node.js, specifically affecting... High Unreviewed

CVE-2025-27210 was published Jul 19, 2025

An authenticated remote code execution in Kentico Xperience allows authenticated users Staging... High Unreviewed

CVE-2025-2749 was published Mar 24, 2025

A path handling issue was addressed with improved validation. This issue is fixed in macOS... High Unreviewed

CVE-2023-42947 was published Mar 28, 2024

Previous1…104 Next

Previous 1 2 3 4 5 … 103 104 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,587 advisories