Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
36
Go
2,522
Maven
5,000+
npm
4,174
NuGet
741
pip
3,965
Pub
12
RubyGems
947
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,048 advisories

Loading
An unrestricted file upload vulnerability in a Trend Micro Apex Central widget below version 8.0... Moderate Unreviewed
CVE-2025-47866 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Fastw3b LLC FW Food Menu allows... Critical Unreviewed
CVE-2025-49447 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in merkulove Reformer for Elementor... Critical Unreviewed
CVE-2025-49444 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in NasaTheme Flozen allows Upload a... Critical Unreviewed
CVE-2025-49071 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG allows Upload a... Critical Unreviewed
CVE-2025-47559 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in RexTheme WP VR allows Upload a... Critical Unreviewed
CVE-2025-47452 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in ovatheme Ovatheme Events Manager... Critical Unreviewed
CVE-2025-32510 was published Jun 17, 2025
The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-3515 was published Jun 17, 2025
A vulnerability, which was classified as critical, was found in SourceCodester Simple Food... Moderate Unreviewed
CVE-2025-6161 was published Jun 17, 2025
The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed
CVE-2025-3234 was published Jun 14, 2025
The Workreap plugin for WordPress, used by the Workreap - Freelance Marketplace WordPress Theme,... High Unreviewed
CVE-2025-5012 was published Jun 12, 2025
An unrestricted file upload vulnerability exists in the Product Image section of the VirtueMart... High Unreviewed
CVE-2025-6002 was published Jun 11, 2025
The WordPress Automatic Plugin plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed
CVE-2025-5395 was published Jun 11, 2025
The Panel Designer dashboard in Airleader Master and Easy before 6.36 allows remote attackers to... High Unreviewed
CVE-2025-46612 was published Jun 10, 2025
The Axle Demo Importer WordPress plugin through 1.0.3 does not validate files to be uploaded,... High Unreviewed
CVE-2025-4954 was published Jun 10, 2025
The Abandoned Cart Pro for WooCommerce plugin contains an authenticated arbitrary file upload... High Unreviewed
CVE-2025-4387 was published Jun 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in FantasticPlugins SUMO Affiliates... Critical Unreviewed
CVE-2025-32291 was published Jun 9, 2025
Zohocorp ManageEngine Exchange Reporter Plus versions 5721 and prior are vulnerable to Remote... Critical Unreviewed
CVE-2025-3835 was published Jun 9, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Agile Logix Store Locator... Moderate Unreviewed
CVE-2025-49329 was published Jun 6, 2025
An unrestricted upload of file with dangerous type vulnerability in the upload file function of... Critical Unreviewed
CVE-2025-48782 was published Jun 6, 2025
A vulnerability classified as critical was found in SourceCodester Open Source Clinic Management... Moderate Unreviewed
CVE-2025-5728 was published Jun 6, 2025
The WP User Frontend Pro plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2025-3054 was published Jun 5, 2025
Umbraco Vulnerable to By-Pass of Configured Allowed Extensions for File Uploads Moderate
CVE-2025-48953 was published for Umbraco.Cms (NuGet) Jun 4, 2025
00mpal00mpa
A vulnerability in the API of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity... Moderate Unreviewed
CVE-2025-20130 was published Jun 4, 2025
File Upload vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker... High Unreviewed
CVE-2025-29093 was published Jun 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database