GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,046
Composer 5,218
Erlang 40
GitHub Actions 40
Go 2,974
Maven 6,256
npm 4,621
NuGet 788
pip 4,317
Pub 12
RubyGems 984
Rust 1,131
Swift 49

Unreviewed advisories

All unreviewed 289,607

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

173 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was found in Casdoor up to 1.335.0. It has been classified as problematic.... Moderate Unreviewed

CVE-2024-5587 was published Jun 2, 2024

CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may... Moderate Unreviewed

CVE-2024-5056 was published Jun 12, 2024

Priority – CWE-552: Files or Directories Accessible to External Parties Moderate Unreviewed

CVE-2024-41699 was published Aug 20, 2024

A vulnerability was found in Mercury MNVR816 up to 2.0.1.0.5. It has been classified as... Moderate Unreviewed

CVE-2024-8655 was published Sep 10, 2024

In dotCMS dashboard, the Tools and Log Files tabs under System → Maintenance Portlet, which is... Moderate Unreviewed

CVE-2024-3164 was published Apr 2, 2024

Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security... Moderate Unreviewed

CVE-2024-7107 was published Sep 26, 2024

A directory listing issue in the baserCMS plugin in D-ZERO CO., LTD. BurgerEditor and... Moderate Unreviewed

CVE-2024-44807 was published Oct 11, 2024

A Local File Inclusion vulnerability has been found in Axiell Iguana CMS. Due to insufficient... Moderate Unreviewed

CVE-2022-45052 was published Jan 4, 2023

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, watchOS... Moderate Unreviewed

CVE-2024-23282 was published Jun 10, 2024

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway... Moderate Unreviewed

CVE-2024-8535 was published Nov 12, 2024

A vulnerability in Cisco IND could allow an authenticated, local attacker to read application... Moderate Unreviewed

CVE-2023-20039 was published Nov 15, 2024

BlueCMS 1.6 suffers from Arbitrary File Deletion via the file_name parameter in an /admin... Moderate Unreviewed

CVE-2024-45894 was published Oct 7, 2024

A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default... Moderate Unreviewed

CVE-2023-34834 was published Jun 29, 2023

Specially constructed queries targeting ETM could discover active remote access sessions Moderate Unreviewed

CVE-2024-47518 was published Jan 11, 2025

Apache Linkis Metadata Query Service JDBC: JDBC Datasource Module with Mysql has file read vulnerability Moderate

CVE-2024-45627 was published for org.apache.linkis:linkis-metadata-query-service-jdbc (Maven) Jan 14, 2025

IBM Jazz for Service Management 1.1.3 through 1.1.3.22 could allow a remote attacker to obtain... Moderate Unreviewed

CVE-2024-47106 was published Jan 18, 2025

An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed

CVE-2023-29820 was published May 12, 2023

An arbitrary file deletion vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed

CVE-2024-3037 was published May 14, 2024

Brocade Fabric OS versions before 8.2.3e2, versions 9.0.0 through 9.2.0c, and 9.2.1 through 9.2... Moderate Unreviewed

CVE-2024-10403 was published Feb 4, 2025

A vulnerability was found in SourceCodester Online Birth Certificate Management System 1.0. It... Moderate Unreviewed

CVE-2024-5045 was published May 17, 2024

An insecure direct object reference vulnerability in GitLab EE affecting all versions from 15.7... Moderate Unreviewed

CVE-2025-1042 was published Feb 12, 2025

An attacker could obtain firmware files and reverse engineer their intended use leading to loss... Moderate Unreviewed

CVE-2025-23421 was published Feb 14, 2025

Auth. (admin+) Arbitrary File Read vulnerability in S2W – Import Shopify to WooCommerce plugin <=... Moderate Unreviewed

CVE-2022-44634 was published Jul 6, 2023

SeaCMS 13.3 was discovered to contain an arbitrary file read vulnerability in the... Moderate Unreviewed

CVE-2025-25799 was published Mar 6, 2025

A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302... Moderate Unreviewed

CVE-2025-25267 was published Mar 11, 2025

Previous 1…5…7 Next

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

173 advisories