Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
36
Go
2,521
Maven
5,000+
npm
4,167
NuGet
741
pip
3,963
Pub
12
RubyGems
946
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,047 advisories

Loading
The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2025-7438 was published Jul 18, 2025
The WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User... Critical Unreviewed
CVE-2025-6222 was published Jul 18, 2025
A vulnerability in the web-based management interface of Cisco Unified Intelligence Center could... Moderate Unreviewed
CVE-2025-20274 was published Jul 16, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Adrian Tobey Groundhogg allows... Critical Unreviewed
CVE-2025-48300 was published Jul 16, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription... Critical Unreviewed
CVE-2025-29009 was published Jul 16, 2025
The HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. plugin... Critical Unreviewed
CVE-2025-7340 was published Jul 15, 2025
A vulnerability, which was classified as critical, has been found in code-projects Simple Car... Moderate Unreviewed
CVE-2025-7477 was published Jul 12, 2025
The AIT CSV import/export plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed
CVE-2020-36849 was published Jul 12, 2025
The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up... Critical Unreviewed
CVE-2020-36847 was published Jul 12, 2025
A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-7470 was published Jul 12, 2025
The BeeTeam368 Extensions plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2025-6423 was published Jul 12, 2025
The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... High Unreviewed
CVE-2025-6057 was published Jul 12, 2025
The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file... Critical Unreviewed
CVE-2025-6058 was published Jul 12, 2025
An unrestricted file upload vulnerability exists in ProcessMaker versions prior to 3.5.4 due to... High Unreviewed
CVE-2025-34097 was published Jul 10, 2025
IBM Analytics Content Hub 2.0, 2.1, 2.2, and 2.3 could be vulnerable to malicious file upload by... Moderate Unreviewed
CVE-2024-39752 was published Jul 10, 2025
Juju allows arbitrary executable uploads via authenticated endpoint without authorization High
CVE-2025-0928 was published for github.com/juju/juju (Go) Jul 9, 2025
tlm wallyworld
hpidcock Fedqys
A vulnerability has been identified in TIA Project-Server (All versions < V2.1.1), TIA Project... Moderate Unreviewed
CVE-2025-27127 was published Jul 8, 2025
Marvell QConvergeConsole getFileFromURL Unrestricted File Upload Remote Code Execution... Critical Unreviewed
CVE-2025-6802 was published Jul 7, 2025
A vulnerability was found in BoyunCMS up to 1.4.20 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2025-7100 was published Jul 7, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in LiquidThemes LogisticsHub allows... Critical Unreviewed
CVE-2025-30933 was published Jul 4, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Fastw3b LLC FW Gallery allows... Critical Unreviewed
CVE-2025-49414 was published Jul 4, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image... Critical Unreviewed
CVE-2025-28951 was published Jul 4, 2025
The Download Plugin plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2025-6586 was published Jul 4, 2025
The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2025-5322 was published Jul 4, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in WPCenter AiBud WP allows Upload... Critical Unreviewed
CVE-2025-23968 was published Jul 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database