Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,885
Erlang
37
GitHub Actions
38
Go
2,546
Maven
5,000+
npm
4,209
NuGet
744
pip
3,988
Pub
12
RubyGems
950
Rust
1,038
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,687 advisories

Loading
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed
CVE-2025-43934 was published Oct 7, 2025
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed
CVE-2025-43889 was published Oct 7, 2025
A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... Moderate Unreviewed
CVE-2025-33034 was published Oct 3, 2025
A client-side path traversal vulnerability was discovered in the web management interface front... Moderate Unreviewed
CVE-2025-3718 was published Oct 7, 2025
Directory Traversal vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W... Moderate Unreviewed
CVE-2025-60969 was published Oct 6, 2025
A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2.... Moderate Unreviewed
CVE-2025-11337 was published Oct 6, 2025
A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed
CVE-2025-11336 was published Oct 6, 2025
It's possible to brute force folders and files, what can be used by an attacker to steal sensitve... Moderate Unreviewed
CVE-2025-58590 was published Oct 6, 2025
A remote, unauthorized attacker can brute force folders and files and read them like private keys... Moderate Unreviewed
CVE-2025-58591 was published Oct 6, 2025
A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed
CVE-2025-47211 was published Oct 3, 2025
Directory traversal vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to read... Moderate Unreviewed
CVE-2014-2352 was published May 17, 2022
A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-11079 was published Sep 27, 2025
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed
CVE-2024-41887 was published Dec 24, 2024
The All in One Music Player plugin for WordPress is vulnerable to Path Traversal in all versions... Moderate Unreviewed
CVE-2025-8559 was published Sep 30, 2025
The File Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to,... Moderate Unreviewed
CVE-2024-2654 was published Apr 9, 2024
A vulnerability was determined in Bjskzy Zhiyou ERP up to 11.0. Affected is the function... Moderate Unreviewed
CVE-2025-11139 was published Sep 29, 2025
A vulnerability was found in Dibo Data Decision Making System up to 2.7.0. The affected element... Moderate Unreviewed
CVE-2025-11034 was published Sep 26, 2025
A flaw has been found in DataTables up to 1.10.13. The affected element is an unknown function of... Moderate Unreviewed
CVE-2025-11031 was published Sep 26, 2025
A flaw has been found in Four-Faith Water Conservancy Informatization Platform 1.0. This affects... Moderate Unreviewed
CVE-2025-11018 was published Sep 26, 2025
A security vulnerability has been detected in kalcaddle kodbox up to 1.61.09. The affected... Moderate Unreviewed
CVE-2025-11016 was published Sep 26, 2025
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to arbitrary... Moderate Unreviewed
CVE-2025-10307 was published Sep 26, 2025
An issue in the component /importmould/deletefolder of Weaver Ecology v9.* allows authenticated... Moderate Unreviewed
CVE-2024-48071 was published Nov 19, 2024
A path traversal vulnerability has been reported to affect QuFirewall. If exploited, the... Moderate Unreviewed
CVE-2023-41290 was published Apr 26, 2024
Path traversal in Quick Share Agent prior to version 3.5.14.47 in Android 12, 3.5.19.41 in... Moderate Unreviewed
CVE-2024-49421 was published Dec 3, 2024
A path traversal vulnerability has been reported to affect QuFirewall. If exploited, the... Moderate Unreviewed
CVE-2023-41291 was published Apr 26, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database