GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,787
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,681
Maven 6,127
npm 4,311
NuGet 760
pip 4,085
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,444

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,136 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SoftSea EPUB File Reader 1.0.0.0 is vulnerable to Directory Traversal. The vulnerability resides... High Unreviewed

CVE-2025-63365 was published Dec 1, 2025

A security vulnerability has been detected in moxi159753 Mogu Blog v2 up to 5.2. The impacted... Moderate Unreviewed

CVE-2025-13816 was published Dec 1, 2025

A vulnerability was found in jsnjfz WebStack-Guns 1.0. This affects the function renderPicture of... Moderate Unreviewed

CVE-2025-13810 was published Dec 1, 2025

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common... Moderate Unreviewed

CVE-2025-13791 was published Nov 30, 2025

Keras version 3.11.3 is affected by a path traversal vulnerability in the keras.utils.get_file()... High Unreviewed

CVE-2025-12638 was published Nov 28, 2025

Improper input sanitization in the file archives upload functionality of Eaton Galileo software... High Unreviewed

CVE-2025-59890 was published Nov 27, 2025

Unauthenticated Path Traversal with Arbitrary File Deletion in DB Electronica Telecomunicazioni S... High Unreviewed

CVE-2025-66251 was published Nov 26, 2025

Arbitrary File Overwrite via Tar Extraction Path Traversal in DB Electronica Telecomunicazioni S... Critical Unreviewed

CVE-2025-66262 was published Nov 26, 2025

UnForm Server versions < 10.1.15 contain an unauthenticated arbitrary file read and SMB coercion... High Unreviewed

CVE-2025-34350 was published Nov 25, 2025

A path traversal vulnerability has been identified in certain router models. A remote,... Moderate Unreviewed

CVE-2025-59372 was published Nov 25, 2025

An authentication-bypass vulnerability exists in AiCloud. This vulnerability can be triggered by... Critical Unreviewed

CVE-2025-59366 was published Nov 25, 2025

A path traversal vulnerability has been identified in WebDAV, which may allow unauthenticated... High Unreviewed

CVE-2025-12003 was published Nov 25, 2025

A Directory Traversal vulnerability was found in the Application Server of Desktop Alert... Critical Unreviewed

CVE-2025-54347 was published Nov 25, 2025

An issue in the size query parameter (/views/file.py) of Austrian Archaeological Institute... High Unreviewed

CVE-2025-60915 was published Nov 24, 2025

Fluent Bit out_file plugin does not properly sanitize tag values when deriving output file names.... Moderate Unreviewed

CVE-2025-12972 was published Nov 24, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-31248 was published Nov 22, 2025

BASIS BBj versions prior to 25.00 contain a Jetty-served web endpoint that fails to properly... Critical Unreviewed

CVE-2025-34320 was published Nov 20, 2025

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-11001 was published Nov 20, 2025

Milos Paripovic OneCommander 3.102.0.0 is vulnerable to Directory Traversal. The vulnerability... High Unreviewed

CVE-2025-63371 was published Nov 19, 2025

A low privileged remote attacker can upload a new or overwrite an existing python script by using... High Unreviewed

CVE-2025-41736 was published Nov 18, 2025

A Path Restriction Bypass vulnerability exists in Serv-U that when abused, could give a malicious... Critical Unreviewed

CVE-2025-40549 was published Nov 18, 2025

PDFPatcher executable does not validate user-supplied file paths, allowing directory traversal... Moderate Unreviewed

CVE-2025-63918 was published Nov 17, 2025

A vulnerability was identified in shsuishang ShopSuite ModulithShop up to... Moderate Unreviewed

CVE-2025-13246 was published Nov 16, 2025

GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.4.4, and... Low Unreviewed

CVE-2025-11990 was published Nov 15, 2025

Nero BackItUp in the Nero Productline is vulnerable to a path parsing/UI rendering flaw (CWE-22)... High Unreviewed

CVE-2025-63680 was published Nov 14, 2025

Previous1…246 Next

Previous 1 2 3 4 5 … 245 246 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,136 advisories