Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,876
Erlang
37
GitHub Actions
36
Go
2,522
Maven
5,000+
npm
4,176
NuGet
741
pip
3,965
Pub
12
RubyGems
947
Rust
1,028
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,048 advisories

Loading
A vulnerability was identified in zlt2000 microservices-platform up to 6.0.0. Affected by this... Moderate Unreviewed
CVE-2025-8841 was published Aug 11, 2025
The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates,... High Unreviewed
CVE-2025-9216 was published Sep 17, 2025
by-night sms V1.0 has an Arbitrary File Upload vulnerability. The /api/sms/upload/headImg... High Unreviewed
CVE-2025-56263 was published Sep 16, 2025
Unrestricted upload vulnerability for dangerous file types on Summar Software´s Portal del... Moderate Unreviewed
CVE-2025-40678 was published Sep 18, 2025
A vulnerability was determined in 1000projects Online Student Project Report Submission and... Moderate Unreviewed
CVE-2025-10424 was published Sep 15, 2025
An authenticated attacker granted a Viewer or Auditor role on a BIG-IQ can upload arbitrary files... Moderate Unreviewed
CVE-2023-29240 was published Jul 6, 2023
A weakness has been identified in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed
CVE-2025-10427 was published Sep 15, 2025
A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0... Moderate Unreviewed
CVE-2025-10428 was published Sep 15, 2025
A vulnerability was identified in 1000projects Online Student Project Report Submission and... Moderate Unreviewed
CVE-2025-10425 was published Sep 15, 2025
An issue in ClipBucket 5.5.0 and prior versions allows an unauthenticated attacker can exploit... High Unreviewed
CVE-2025-55912 was published Sep 18, 2025
The Embed PDF for WPForms plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2025-10647 was published Sep 19, 2025
Umbraco CMS versions prior to 4.7.1 are vulnerable to unauthenticated remote code execution via... Critical Unreviewed
CVE-2012-10054 was published Aug 13, 2025
A Shell Upload vulnerability in Tourism Management System 2.0 allows an attacker to upload and... High Unreviewed
CVE-2025-57642 was published Sep 10, 2025
A weakness has been identified in SourceCodester Online Student File Management System 1.0. This... Moderate Unreviewed
CVE-2025-10480 was published Sep 16, 2025
Incorrect handling of uploaded files in the admin "Restore" function in Invoice Ninja <= 5.11.72... High Unreviewed
CVE-2025-10009 was published Sep 22, 2025
An issue in Mblog Blog system v.3.5.0 allows an attacker to execute arbitrary code via a crafted... Critical Unreviewed
CVE-2024-28713 was published Mar 28, 2024
The Podlove Podcast Publisher plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed
CVE-2025-10147 was published Sep 23, 2025
The Product Options and Price Calculation Formulas for WooCommerce – Uni CPO (Premium) plugin for... Critical Unreviewed
CVE-2025-10412 was published Sep 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in TalentSys Consulting Information... Critical Unreviewed
CVE-2025-9846 was published Sep 23, 2025
An authenticated remote code execution vulnerability exists in GetSimpleCMS version 3.2.1. The... High Unreviewed
CVE-2013-10032 was published Jul 25, 2025
ClipBucket version 2.6 and earlier contains a critical vulnerability in the ofc_upload_image.php... Critical Unreviewed
CVE-2013-10040 was published Jul 31, 2025
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 1.0.735 and... High Unreviewed
CVE-2025-34195 was published Sep 19, 2025
An unrestricted upload of file with dangerous type vulnerability in SUNNET Corporate Training... Moderate Unreviewed
CVE-2025-54944 was published Sep 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database