Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,814
Erlang
36
GitHub Actions
32
Go
2,399
Maven
5,000+
npm
4,040
NuGet
722
pip
3,829
Pub
12
RubyGems
932
Rust
1,002
Swift
38
Unreviewed advisories
All unreviewed
5,000+

7,025 advisories

Loading
The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before... High Unreviewed
CVE-2015-10136 was published Jul 19, 2025
The Simple Backup plugin for WordPress is vulnerable to Arbitrary File Download in versions up to... High Unreviewed
CVE-2015-10134 was published Jul 19, 2025
An incomplete fix has been identified for CVE-2025-23084 in Node.js, specifically affecting... High Unreviewed
CVE-2025-27210 was published Jul 19, 2025
Mattermost Path Traversal vulnerability Moderate
CVE-2025-6233 was published for github.com/mattermost/mattermost-server (Go) Jul 18, 2025
The Attachment Manager plugin for WordPress is vulnerable to arbitrary file deletion due to... Critical Unreviewed
CVE-2025-7643 was published Jul 18, 2025
The School Management System for Wordpress plugin for WordPress is vulnerable to Local File... High Unreviewed
CVE-2025-3740 was published Jul 18, 2025
The Madara - Core plugin for WordPress is vulnerable to arbitrary file deletion due to... Critical Unreviewed
CVE-2025-7712 was published Jul 17, 2025
A path traversal vulnerability exists in RIPS Scanner version 0.54. The vulnerability allows... High Unreviewed
CVE-2025-34126 was published Jul 17, 2025
An unauthenticated file download vulnerability exists in LimeSurvey versions from 2.0+ up to and... High Unreviewed
CVE-2025-34120 was published Jul 16, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-31070 was published Jul 16, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-28955 was published Jul 16, 2025
The Counter live visitors for WooCommerce plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2025-7359 was published Jul 16, 2025
DSpace is vulnerable to Path Traversal attacks when importing packages using Simple Archive Format Moderate
CVE-2025-53622 was published for org.dspace:dspace-api (Maven) Jul 15, 2025
MMilosz kshepherd
Measured is vulnerable to Path Traversal attacks during class initialization Moderate
GHSA-29g5-m8v7-v564 was published for measured (RubyGems) Jul 15, 2025
calysteon
A directory traversal vulnerability exists in ColoradoFTP Server ≤ 1.3 Build 8 for Windows,... Critical Unreviewed
CVE-2025-34110 was published Jul 15, 2025
The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. plugin... Critical Unreviewed
CVE-2025-7360 was published Jul 15, 2025
A path traversal vulnerability in the file_upload-cgi CGI program of Zyxel NWA50AX PRO firmware... High Unreviewed
CVE-2025-6265 was published Jul 15, 2025
A vulnerability was found in YiJiuSmile kkFileViewOfficeEdit up to... Moderate Unreviewed
CVE-2025-7628 was published Jul 14, 2025
A vulnerability, which was classified as critical, was found in YiJiuSmile kkFileViewOfficeEdit... Moderate Unreviewed
CVE-2025-7625 was published Jul 14, 2025
A vulnerability has been found in YiJiuSmile kkFileViewOfficeEdit up to... Moderate Unreviewed
CVE-2025-7626 was published Jul 14, 2025
The Application is vulnerable to an authenticated Arbitrary File Deletion. This affects the Agent... High Unreviewed
CVE-2024-26292 was published Jul 14, 2025
A vulnerability has been found in Zavy86 WikiDocs up to 1.0.77 and classified as critical.... Moderate Unreviewed
CVE-2025-7575 was published Jul 14, 2025
A vulnerability has been found in jshERP up to 3.5 and classified as critical. This vulnerability... Moderate Unreviewed
CVE-2025-7566 was published Jul 14, 2025
A vulnerability has been found in JoeyBling SpringBoot_MyBatisPlus up to... Moderate Unreviewed
CVE-2025-7488 was published Jul 12, 2025
The RSFirewall! plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed
CVE-2025-7518 was published Jul 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database