GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,098
Composer 4,883
Erlang 37
GitHub Actions 38
Go 2,546
Maven 5,990
npm 4,202
NuGet 743
pip 3,977
Pub 12
RubyGems 947
Rust 1,033
Swift 39

Unreviewed advisories

All unreviewed 272,003

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,676 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The All in One Music Player plugin for WordPress is vulnerable to Path Traversal in all versions... Moderate Unreviewed

CVE-2025-8559 was published Sep 30, 2025

A vulnerability was determined in Bjskzy Zhiyou ERP up to 11.0. Affected is the function... Moderate Unreviewed

CVE-2025-11139 was published Sep 29, 2025

A vulnerability was found in Dibo Data Decision Making System up to 2.7.0. The affected element... Moderate Unreviewed

CVE-2025-11034 was published Sep 26, 2025

A flaw has been found in DataTables up to 1.10.13. The affected element is an unknown function of... Moderate Unreviewed

CVE-2025-11031 was published Sep 26, 2025

A security vulnerability has been detected in kalcaddle kodbox up to 1.61.09. The affected... Moderate Unreviewed

CVE-2025-11016 was published Sep 26, 2025

A flaw has been found in Four-Faith Water Conservancy Informatization Platform 1.0. This affects... Moderate Unreviewed

CVE-2025-11018 was published Sep 26, 2025

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to arbitrary... Moderate Unreviewed

CVE-2025-10307 was published Sep 26, 2025

A flaw has been found in JSC R7 R7-Office Document Server up to 20250820. Impacted is an unknown... Moderate Unreviewed

CVE-2025-10777 was published Sep 22, 2025

A weakness has been identified in SeriaWei ZKEACMS up to 4.3. This issue affects the function... Moderate Unreviewed

CVE-2025-10766 was published Sep 22, 2025

Directory traversal vulnerability in Sync In server thru 1.1.1 allowing authenticated attackers... Moderate Unreviewed

CVE-2025-56869 was published Sep 22, 2025

Directory Traversal vulnerability in Papermark 0.20.0 and prior allows authenticated attackers to... Moderate Unreviewed

CVE-2025-57682 was published Sep 22, 2025

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform 1.0.... Moderate Unreviewed

CVE-2025-10709 was published Sep 19, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-10708 was published Sep 19, 2025

CISA Thorium does not adequately validate the paths of downloaded files via 'download_ephemeral'... Moderate Unreviewed

CVE-2025-35430 was published Sep 17, 2025

The StoreEngine – Powerful WordPress eCommerce Plugin for Payments, Memberships, Affiliates,... Moderate Unreviewed

CVE-2025-9215 was published Sep 17, 2025

The Developer Loggers for Simple History plugin for WordPress is vulnerable to Local File... Moderate Unreviewed

CVE-2025-10050 was published Sep 17, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43314 was published Sep 16, 2025

A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed

CVE-2025-43190 was published Sep 16, 2025

A vulnerability has been found in harry0703 MoneyPrinterTurbo up to 1.2.6. The impacted element... Moderate Unreviewed

CVE-2025-10472 was published Sep 15, 2025

wangxutech MoneyPrinterTurbo 1.2.6 allows path traversal via /api/v1/download/ URIs such as /api... Moderate Unreviewed

CVE-2025-49089 was published Sep 15, 2025

A vulnerability was identified in erjinzhi 10OA 1.0. Affected by this vulnerability is an unknown... Moderate Unreviewed

CVE-2025-10273 was published Sep 12, 2025

A vulnerability has been found in binary-husky gpt_academic up to 3.91. Impacted is the function... Moderate Unreviewed

CVE-2025-10236 was published Sep 11, 2025

A security flaw has been discovered in Display Painéis TGA up to 7.1.41. Affected by this issue... Moderate Unreviewed

CVE-2025-10245 was published Sep 11, 2025

A security vulnerability has been detected in kalcaddle kodbox 1.61. This affects the function... Moderate Unreviewed

CVE-2025-10233 was published Sep 11, 2025

A weakness has been identified in 299ko up to 2.0.0. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-10232 was published Sep 11, 2025

Previous1…108 Next

Previous 1 2 3 4 5 … 107 108 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,676 advisories