GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,983
Composer 4,874
Erlang 37
GitHub Actions 36
Go 2,521
Maven 5,974
npm 4,163
NuGet 741
pip 3,961
Pub 12
RubyGems 946
Rust 1,028
Swift 39

Unreviewed advisories

All unreviewed 271,024

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,047 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Unrestricted Upload of File with Dangerous Type vulnerability in TalentSys Consulting Information... Critical Unreviewed

CVE-2025-9846 was published Sep 23, 2025

The Product Options and Price Calculation Formulas for WooCommerce – Uni CPO (Premium) plugin for... Critical Unreviewed

CVE-2025-10412 was published Sep 23, 2025

The Podlove Podcast Publisher plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-10147 was published Sep 23, 2025

Incorrect handling of uploaded files in the admin "Restore" function in Invoice Ninja <= 5.11.72... High Unreviewed

CVE-2025-10009 was published Sep 22, 2025

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 1.0.735 and... High Unreviewed

CVE-2025-34195 was published Sep 19, 2025

The Embed PDF for WPForms plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2025-10647 was published Sep 19, 2025

An issue in ClipBucket 5.5.0 and prior versions allows an unauthenticated attacker can exploit... High Unreviewed

CVE-2025-55912 was published Sep 18, 2025

Unrestricted upload vulnerability for dangerous file types on Summar Software´s Portal del... Moderate Unreviewed

CVE-2025-40678 was published Sep 18, 2025

The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates,... High Unreviewed

CVE-2025-9216 was published Sep 17, 2025

by-night sms V1.0 has an Arbitrary File Upload vulnerability. The /api/sms/upload/headImg... High Unreviewed

CVE-2025-56263 was published Sep 16, 2025

osCommerce versions up to and including 2.2 RC2a contain a vulnerability in its administrative... Critical Unreviewed

CVE-2009-20006 was published Sep 16, 2025

code-projects Computer Laboratory System 1.0 has a file upload vulnerability. Staff can upload... High Unreviewed

CVE-2025-56295 was published Sep 16, 2025

A weakness has been identified in SourceCodester Online Student File Management System 1.0. This... Moderate Unreviewed

CVE-2025-10480 was published Sep 16, 2025

The rfpiped service on TCP port 555 in Ceragon Networks / Siklu Communication EtherHaul series ... Moderate Unreviewed

CVE-2025-57176 was published Sep 15, 2025

A weakness has been identified in SourceCodester Pet Grooming Management Software 1.0. This... Moderate Unreviewed

CVE-2025-10427 was published Sep 15, 2025

A security vulnerability has been detected in SourceCodester Pet Grooming Management Software 1.0... Moderate Unreviewed

CVE-2025-10428 was published Sep 15, 2025

A vulnerability was determined in 1000projects Online Student Project Report Submission and... Moderate Unreviewed

CVE-2025-10424 was published Sep 15, 2025

A vulnerability was identified in 1000projects Online Student Project Report Submission and... Moderate Unreviewed

CVE-2025-10425 was published Sep 15, 2025

An issue in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to arbitrarily overwrite... High Unreviewed

CVE-2025-45586 was published Sep 12, 2025

File Upload vulnerability in SueamCMS v.0.1.2 allows a remote attacker to execute arbitrary code... Critical Unreviewed

CVE-2025-55835 was published Sep 12, 2025

A Shell Upload vulnerability in Tourism Management System 2.0 allows an attacker to upload and... High Unreviewed

CVE-2025-57642 was published Sep 10, 2025

A weakness has been identified in ScriptAndTools Real Estate Management System 1.0. Impacted is... Moderate Unreviewed

CVE-2025-9847 was published Sep 10, 2025

The Responsive Filterable Portfolio plugin for WordPress is vulnerable to arbitrary file uploads... High Unreviewed

CVE-2025-10049 was published Sep 10, 2025

The Import any XML, CSV or Excel File to WordPress plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-10001 was published Sep 10, 2025

Insufficient filename validation in Ivanti Endpoint Manager before 2024 SU3 Security Update 1 and... High Unreviewed

CVE-2025-9872 was published Sep 9, 2025

Previous1…122 Next

Previous 1 2 3 4 5 … 121 122 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,047 advisories