GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,759
Composer 5,034
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,120
npm 4,300
NuGet 760
pip 4,078
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,163

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

143 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Tainacan plugin for WordPress is vulnerable to Information Exposure in all versions up to,... Moderate Unreviewed

CVE-2025-12747 was published Nov 21, 2025

The Import WP – Export and Import CSV and XML files to WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2025-12894 was published Nov 21, 2025

Local File Inclusion vulnerability in M-Files Server in versions before 24.11 (excluding 24.8 SR1... Moderate Unreviewed

CVE-2024-10126 was published Nov 20, 2024

Tanium addressed an arbitrary file deletion vulnerability in TanOS. Moderate Unreviewed

CVE-2025-13225 was published Nov 19, 2025

A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions), SICAM... Moderate Unreviewed

CVE-2022-34464 was published Jul 13, 2022

IBM Cognos Analytics Certified Containers 12.1.0 could disclose package parameter information due... Moderate Unreviewed

CVE-2025-33150 was published Nov 10, 2025

In the default installation and configuration of Gladinet CentreStack and TrioFox, there is an... Moderate Unreviewed

CVE-2025-11371 was published Oct 9, 2025

FutureNet MA and IP-K series provided by Century Systems Co., Ltd. put the firmware version and... Moderate Unreviewed

CVE-2025-58152 was published Oct 31, 2025

The TeleMessage service through 2025-05-05 is based on a JSP application in which the heap... Moderate Unreviewed

CVE-2025-48928 was published May 28, 2025

The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers... Moderate Unreviewed

CVE-2016-3715 was published May 14, 2022

HCL Unica Platform is affected by unprotected files due to improper access controls. These... Moderate Unreviewed

CVE-2025-31996 was published Oct 13, 2025

A files or directories accessible to external parties vulnerability has been reported to affect... Moderate Unreviewed

CVE-2024-48864 was published Mar 7, 2025

File replacement vulnerability on some devices Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2024-54099 was published Dec 12, 2024

A vulnerability in the command-line interface of EdgeConnect SD-WAN could allow an authenticated... Moderate Unreviewed

CVE-2025-37130 was published Sep 17, 2025

CData API Server MySQL Misconfiguration Information Disclosure Vulnerability. This vulnerability... Moderate Unreviewed

CVE-2025-9273 was published Sep 2, 2025

Files or directories accessible to external parties issue exists in SS1 Ver.16.0.0.10 and earlier... Moderate Unreviewed

CVE-2025-52460 was published Aug 28, 2025

MCCMS 2.7.0 is vulnerable to Arbitrary file deletion in the Backups.php component. This allows an... Moderate Unreviewed

CVE-2025-51818 was published Aug 21, 2025

Dell SmartFabric OS10 Software, versions prior to 10.6.0.5 contains a Files or Directories... Moderate Unreviewed

CVE-2025-30103 was published Jul 30, 2025

Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation... Moderate Unreviewed

CVE-2023-52112 was published Jan 16, 2024

The Secure Downloads WordPress plugin before 1.2.3 is vulnerable does not properly restrict which... Moderate Unreviewed

CVE-2024-8031 was published May 15, 2025

A flaw was found in Samba. The smbd service daemon does not pick up group membership changes when... Moderate Unreviewed

CVE-2025-0620 was published Jun 6, 2025

The web portal on airpointer 2.4.107-2 was vulnerable local file inclusion. A malicious user with... Moderate Unreviewed

CVE-2025-4634 was published May 30, 2025

A vulnerability classified as critical was found in SourceCodester Client Database Management... Moderate Unreviewed

CVE-2025-4909 was published May 19, 2025

When creating an OPERATOR user account on the BMC, the redfish plugin saved the auto-generated... Moderate Unreviewed

CVE-2022-3287 was published Sep 29, 2022

Aria Operations for Networks contains a local file read vulnerability. A malicious actor with... Moderate Unreviewed

CVE-2024-22240 was published Feb 6, 2024

Previous1…6 Next

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

143 advisories