GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,095
Composer 4,883
Erlang 37
GitHub Actions 38
Go 2,546
Maven 5,990
npm 4,200
NuGet 743
pip 3,977
Pub 12
RubyGems 947
Rust 1,032
Swift 39

Unreviewed advisories

All unreviewed 271,940

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,542 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Path traversal vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to... High Unreviewed

CVE-2025-59744 was published Oct 2, 2025

An attacker can obtain server information using Path Traversal vulnerability to conduct SQL... High Unreviewed

CVE-2025-11020 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Download of Code... High Unreviewed

CVE-2025-11182 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-59002 was published Sep 26, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-10449 was published Sep 25, 2025

Datart 1.0.0-rc.3 is vulnerable to Directory Traversal. The configuration file handling of the... High Unreviewed

CVE-2025-56816 was published Sep 24, 2025

Datart 1.0.0-rc.3 is vulnerable to Directory Traversal in the POST /viz/image interface, since... High Unreviewed

CVE-2025-56815 was published Sep 24, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-10468 was published Sep 19, 2025

Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains a pre-authentication file disclosure... High Unreviewed

CVE-2025-34185 was published Sep 16, 2025

The The Hack Repair Guy's Plugin Archiver plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2025-10176 was published Sep 13, 2025

A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server ... High Unreviewed

CVE-2025-9918 was published Sep 11, 2025

The User Meta – User Profile Builder and User management plugin plugin for WordPress is... High Unreviewed

CVE-2025-9693 was published Sep 11, 2025

Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability. High Unreviewed

CVE-2025-58320 was published Sep 11, 2025

The upload endpoint insufficiently validates the 'Upload-Key' request header. By supplying path... High Unreviewed

CVE-2025-41714 was published Sep 10, 2025

The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to write files to... High Unreviewed

CVE-2025-23343 was published Sep 9, 2025

A problem has been discovered in appRain CMF 4.0.5. An authenticated Path Traversal vulnerability... High Unreviewed

CVE-2025-41035 was published Sep 4, 2025

Anritsu ShockLine CHX File Parsing Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2025-7975 was published Sep 2, 2025

A path traversal vulnerability has been reported to affect VioStor. If a remote attacker gains an... High Unreviewed

CVE-2025-52861 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33033 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33037 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33036 was published Aug 29, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-33038 was published Aug 29, 2025

Nagios XI < 2024R1.3.2 contains a remote code execution vulnerability by chaining two flaws: an... High Unreviewed

CVE-2024-13986 was published Aug 28, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-54029 was published Aug 28, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-53588 was published Aug 28, 2025

Previous1…102 Next

Previous 1 2 3 4 5 … 101 102 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,542 advisories