GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,833
Composer 5,055
Erlang 39
GitHub Actions 38
Go 2,685
Maven 6,134
npm 4,318
NuGet 760
pip 4,092
Pub 12
RubyGems 958
Rust 1,063
Swift 45

Unreviewed advisories

All unreviewed 278,503

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,204 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The SureMail – SMTP and Email Logs Plugin for WordPress is vulnerable to Unrestricted Upload of... High Unreviewed

CVE-2025-13516 was published Dec 2, 2025

File upload vulnerability in HCL Technologies Ltd. Unica 12.0.0. Moderate Unreviewed

CVE-2025-51736 was published Nov 28, 2025

The Blubrry PowerPress plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2025-13536 was published Nov 27, 2025

Unauthenticated Arbitrary File Upload (patch_contents.php) in DB Electronica Telecomunicazioni S... Critical Unreviewed

CVE-2025-66256 was published Nov 26, 2025

Unauthenticated Arbitrary File Upload (status_contents.php) in DB Electronica Telecomunicazioni S... Critical Unreviewed

CVE-2025-66250 was published Nov 26, 2025

The CIBELES AI plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2025-13595 was published Nov 26, 2025

The AI Feeds plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2025-13597 was published Nov 26, 2025

The ProjectList plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... High Unreviewed

CVE-2025-13376 was published Nov 25, 2025

Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi... Critical Unreviewed

CVE-2023-7330 was published Nov 24, 2025

A weakness has been identified in code-projects Online Bidding System 1.0. This issue affects the... Moderate Unreviewed

CVE-2025-13574 was published Nov 24, 2025

A security flaw has been discovered in projectworlds can pass malicious payloads up to 1.0. This... Moderate Unreviewed

CVE-2025-13573 was published Nov 24, 2025

The S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator plugin for WordPress... High Unreviewed

CVE-2025-12973 was published Nov 21, 2025

The Vitepos – Point of Sale (POS) for WooCommerce plugin for WordPress is vulnerable to arbitrary... High Unreviewed

CVE-2025-13156 was published Nov 21, 2025

The URL Image Importer plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2025-12138 was published Nov 21, 2025

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2025-11456 was published Nov 21, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Narkom Communication and... High Unreviewed

CVE-2025-0645 was published Nov 20, 2025

A flaw has been found in Campcodes Retro Basketball Shoes Online Store 1.0. The impacted element... Moderate Unreviewed

CVE-2025-13423 was published Nov 20, 2025

A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by this... Moderate Unreviewed

CVE-2025-13411 was published Nov 19, 2025

eGovFramework/egovframe-common-components versions up to and including 4.3.1 contain an... Moderate Unreviewed

CVE-2025-34336 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Critical Unreviewed

CVE-2025-34329 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Moderate Unreviewed

CVE-2025-34330 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Critical Unreviewed

CVE-2025-34328 was published Nov 19, 2025

The Mozart FM Transmitter web management interface on version WEBMOZZI-00287, contains an... High Unreviewed

CVE-2025-63227 was published Nov 18, 2025

The Mozart FM Transmitter web management interface on version WEBMOZZI-00287, contains an... Critical Unreviewed

CVE-2025-63228 was published Nov 18, 2025

An arbitrary file upload vulnerability in the /php/UploadHandler.php component of RichFilemanager... Critical Unreviewed

CVE-2025-63994 was published Nov 18, 2025

Previous1…129 Next

Previous 1 2 3 4 5 … 128 129 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,204 advisories