GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,138
Composer 4,885
Erlang 37
GitHub Actions 38
Go 2,546
Maven 6,004
npm 4,212
NuGet 744
pip 3,988
Pub 12
RubyGems 950
Rust 1,038
Swift 45

Unreviewed advisories

All unreviewed 272,754

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,019 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is... Critical Unreviewed

CVE-2025-7526 was published Oct 9, 2025

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2025-47211 was published Oct 3, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43889 was published Oct 7, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43934 was published Oct 7, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... Moderate Unreviewed

CVE-2025-33034 was published Oct 3, 2025

A path traversal vulnerability was discovered in the Time Machine functionality due to missing... High Unreviewed

CVE-2025-40889 was published Oct 7, 2025

A client-side path traversal vulnerability was discovered in the web management interface front... Moderate Unreviewed

CVE-2025-3718 was published Oct 7, 2025

Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component:... Critical Unreviewed

CVE-2025-61882 was published Oct 5, 2025

Directory Traversal vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W... Moderate Unreviewed

CVE-2025-60969 was published Oct 6, 2025

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2.... Moderate Unreviewed

CVE-2025-11337 was published Oct 6, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-11336 was published Oct 6, 2025

It's possible to brute force folders and files, what can be used by an attacker to steal sensitve... Moderate Unreviewed

CVE-2025-58590 was published Oct 6, 2025

A remote, unauthorized attacker can brute force folders and files and read them like private keys... Moderate Unreviewed

CVE-2025-58591 was published Oct 6, 2025

Directory traversal vulnerability in Cogent DataHub before 7.3.5 allows remote attackers to read... Moderate Unreviewed

CVE-2014-2352 was published May 17, 2022

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-11079 was published Sep 27, 2025

Path traversal vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to... High Unreviewed

CVE-2025-59744 was published Oct 2, 2025

An attacker can obtain server information using Path Traversal vulnerability to conduct SQL... High Unreviewed

CVE-2025-11020 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Unrestricted... Critical Unreviewed

CVE-2025-11221 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Download of Code... High Unreviewed

CVE-2025-11182 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11833 was published Dec 13, 2024

Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on... Moderate Unreviewed

CVE-2024-41887 was published Dec 24, 2024

The All in One Music Player plugin for WordPress is vulnerable to Path Traversal in all versions... Moderate Unreviewed

CVE-2025-8559 was published Sep 30, 2025

The File Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to,... Moderate Unreviewed

CVE-2024-2654 was published Apr 9, 2024

A vulnerability was determined in Bjskzy Zhiyou ERP up to 11.0. Affected is the function... Moderate Unreviewed

CVE-2025-11139 was published Sep 29, 2025

A vulnerability was found in Dibo Data Decision Making System up to 2.7.0. The affected element... Moderate Unreviewed

CVE-2025-11034 was published Sep 26, 2025

Previous1…241 Next

Previous 1 2 3 4 5 … 240 241 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,019 advisories