GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,739
Composer 5,031
Erlang 39
GitHub Actions 38
Go 2,675
Maven 6,116
npm 4,297
NuGet 760
pip 4,077
Pub 12
RubyGems 957
Rust 1,058
Swift 45

Unreviewed advisories

All unreviewed 278,031

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,123 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A Directory Traversal vulnerability was found in the Application Server of Desktop Alert... Critical Unreviewed

CVE-2025-54347 was published Nov 25, 2025

An issue in the size query parameter (/views/file.py) of Austrian Archaeological Institute... High Unreviewed

CVE-2025-60915 was published Nov 24, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-31248 was published Nov 22, 2025

BASIS BBj versions prior to 25.00 contain a Jetty-served web endpoint that fails to properly... Critical Unreviewed

CVE-2025-34320 was published Nov 20, 2025

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-11001 was published Nov 20, 2025

Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability... High Unreviewed

CVE-2025-63371 was published Nov 19, 2025

A low privileged remote attacker can upload a new or overwrite an existing python script by using... High Unreviewed

CVE-2025-41736 was published Nov 18, 2025

A Path Restriction Bypass vulnerability exists in Serv-U that when abused, could give a malicious... Critical Unreviewed

CVE-2025-40549 was published Nov 18, 2025

PDFPatcher executable does not validate user-supplied file paths, allowing directory traversal... Moderate Unreviewed

CVE-2025-63918 was published Nov 17, 2025

A weakness has been identified in lsfusion platform up to 6.1. This vulnerability affects the... Moderate Unreviewed

CVE-2025-13265 was published Nov 17, 2025

A vulnerability was identified in shsuishang ShopSuite ModulithShop up to... Moderate Unreviewed

CVE-2025-13246 was published Nov 16, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.4, and... Low Unreviewed

CVE-2025-11990 was published Nov 15, 2025

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22)... High Unreviewed

CVE-2025-63680 was published Nov 14, 2025

A security vulnerability has been detected in SimStudioAI sim up to... Moderate Unreviewed

CVE-2025-9801 was published Nov 14, 2025

An issue was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1... Low Unreviewed

CVE-2025-54559 was published Nov 14, 2025

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 NIM server (formerly known as NIM master) service ... High Unreviewed

CVE-2025-36236 was published Nov 14, 2025

The Data Tables Generator by Supsystic plugin for WordPress is vulnerable to arbitrary file... Moderate Unreviewed

CVE-2025-12089 was published Nov 13, 2025

JVC VN-T IP-camera models firmware versions up to 2016-08-22 (confirmed on the VN-T216VPRU model)... High Unreviewed

CVE-2016-15055 was published Nov 13, 2025

Ozeki SMS Gateway versions up to and including 10.3.208 contain a path traversal vulnerability.... High Unreviewed

CVE-2023-7327 was published Nov 13, 2025

Longjing Technology BEMS API versions up to and including 1.21 contains an unauthenticated... High Unreviewed

CVE-2021-4463 was published Nov 13, 2025

DBLTek GoIP-1 firmware versions up to and including GHSFVT-1.1-67-5 contain a local file... High Unreviewed

CVE-2022-4982 was published Nov 13, 2025

N-central < 2025.4 is vulnerable to authentication bypass via path traversal Critical Unreviewed

CVE-2025-11366 was published Nov 12, 2025

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... High Unreviewed

CVE-2025-11565 was published Nov 12, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-12382 was published Nov 12, 2025

Improper limitation of a pathname to a restricted directory ('path traversal') in Visual Studio... Moderate Unreviewed

CVE-2025-62449 was published Nov 11, 2025

Previous1…245 Next

Previous 1 2 3 4 5 … 244 245 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,123 advisories