GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,162
Composer 4,890
Erlang 37
GitHub Actions 38
Go 2,546
Maven 6,011
npm 4,217
NuGet 745
pip 3,994
Pub 12
RubyGems 950
Rust 1,038
Swift 45

Unreviewed advisories

All unreviewed 272,847

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,689 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Newforma Info Exchange (NIX) '/UserWeb/Common/MarkupServices.ashx' 'StreamStampImage' accepts an... Moderate Unreviewed

CVE-2025-35056 was published Oct 9, 2025

Newforma Info Exchange (NIX) accepts requests to '/UserWeb/Common/MarkupServices.ashx' specifying... Moderate Unreviewed

CVE-2025-35053 was published Oct 9, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43934 was published Oct 7, 2025

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43889 was published Oct 7, 2025

A client-side path traversal vulnerability was discovered in the web management interface front... Moderate Unreviewed

CVE-2025-3718 was published Oct 7, 2025

Directory Traversal vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W... Moderate Unreviewed

CVE-2025-60969 was published Oct 6, 2025

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2.... Moderate Unreviewed

CVE-2025-11337 was published Oct 6, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-11336 was published Oct 6, 2025

A remote, unauthorized attacker can brute force folders and files and read them like private keys... Moderate Unreviewed

CVE-2025-58591 was published Oct 6, 2025

It's possible to brute force folders and files, what can be used by an attacker to steal sensitve... Moderate Unreviewed

CVE-2025-58590 was published Oct 6, 2025

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2025-47211 was published Oct 3, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... Moderate Unreviewed

CVE-2025-33034 was published Oct 3, 2025

The All in One Music Player plugin for WordPress is vulnerable to Path Traversal in all versions... Moderate Unreviewed

CVE-2025-8559 was published Sep 30, 2025

A vulnerability was determined in Bjskzy Zhiyou ERP up to 11.0. Affected is the function... Moderate Unreviewed

CVE-2025-11139 was published Sep 29, 2025

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-11079 was published Sep 27, 2025

A vulnerability was found in Dibo Data Decision Making System up to 2.7.0. The affected element... Moderate Unreviewed

CVE-2025-11034 was published Sep 26, 2025

A flaw has been found in DataTables up to 1.10.13. The affected element is an unknown function of... Moderate Unreviewed

CVE-2025-11031 was published Sep 26, 2025

A security vulnerability has been detected in kalcaddle kodbox up to 1.61.09. The affected... Moderate Unreviewed

CVE-2025-11016 was published Sep 26, 2025

A flaw has been found in Four-Faith Water Conservancy Informatization Platform 1.0. This affects... Moderate Unreviewed

CVE-2025-11018 was published Sep 26, 2025

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to arbitrary... Moderate Unreviewed

CVE-2025-10307 was published Sep 26, 2025

A flaw has been found in JSC R7 R7-Office Document Server up to 20250820. Impacted is an unknown... Moderate Unreviewed

CVE-2025-10777 was published Sep 22, 2025

A weakness has been identified in SeriaWei ZKEACMS up to 4.3. This issue affects the function... Moderate Unreviewed

CVE-2025-10766 was published Sep 22, 2025

Directory traversal vulnerability in Sync In server thru 1.1.1 allowing authenticated attackers... Moderate Unreviewed

CVE-2025-56869 was published Sep 22, 2025

Directory Traversal vulnerability in Papermark 0.20.0 and prior allows authenticated attackers to... Moderate Unreviewed

CVE-2025-57682 was published Sep 22, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-10708 was published Sep 19, 2025

Previous1…108 Next

Previous 1 2 3 4 5 … 107 108 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,689 advisories