GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,464
Composer 5,137
Erlang 40
GitHub Actions 38
Go 2,831
Maven 6,209
npm 4,462
NuGet 775
pip 4,226
Pub 12
RubyGems 972
Rust 1,093
Swift 47

Unreviewed advisories

All unreviewed 286,074

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,293 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Chainlit versions prior to 2.9.4 contain an arbitrary file read vulnerability in the /project... High Unreviewed

CVE-2026-22218 was published Jan 20, 2026

A vulnerability has been found in Sanluan PublicCMS up to 5.202506.d. This impacts the function... Moderate Unreviewed

CVE-2026-1111 was published Jan 18, 2026

The Gutenberg Thim Blocks – Page Builder, Gutenberg Blocks for the Block Editor plugin for... Moderate Unreviewed

CVE-2025-13725 was published Jan 17, 2026

The Feeds for YouTube Pro plugin for WordPress is vulnerable to arbitrary file read in all... Moderate Unreviewed

CVE-2025-12002 was published Jan 17, 2026

SteelSeries Nahimic 3 1.10.7 allows Directory traversal. High Unreviewed

CVE-2025-68921 was published Jan 16, 2026

Path Traversal vulnerability exists in multiple Network Cameras TRIFORA 3 series provided by TOA... High Unreviewed

CVE-2026-22876 was published Jan 16, 2026

GeoVision GeoWebServer 5.3.3 contains multiple vulnerabilities including local file inclusion,... High Unreviewed

CVE-2021-47795 was published Jan 16, 2026

Directory traversal vulnerability in Omnispace Agora Project before 25.10 allowing... High Unreviewed

CVE-2025-67076 was published Jan 15, 2026

Oliver Library Server v5 contains a file download vulnerability that allows unauthenticated... High Unreviewed

CVE-2021-47755 was published Jan 15, 2026

Directory traversal vulnerability in InvoicePlane through 1.6.3 allows unauthenticated attackers... Moderate Unreviewed

CVE-2025-67083 was published Jan 15, 2026

A local user can trigger Harmony SASE Windows client to write or delete files outside the... High Unreviewed

CVE-2025-9142 was published Jan 14, 2026

The News and Blog Designer Bundle plugin for WordPress is vulnerable to Local File Inclusion in... Critical Unreviewed

CVE-2025-14502 was published Jan 14, 2026

The Gotham Block Extra Light plugin for WordPress is vulnerable to Arbitrary File Read in all... Moderate Unreviewed

CVE-2025-15020 was published Jan 14, 2026

The Integration Opvius AI for WooCommerce plugin for WordPress is vulnerable to Path Traversal in... Critical Unreviewed

CVE-2025-14301 was published Jan 14, 2026

e107 CMS version 3.2.1 contains a critical file upload vulnerability that allows authenticated... High Unreviewed

CVE-2022-50939 was published Jan 14, 2026

Kyocera Command Center RX ECOSYS M2035dn contains a directory traversal vulnerability that allows... High Unreviewed

CVE-2022-50932 was published Jan 14, 2026

Owlfiles File Manager 12.0.1 contains a path traversal vulnerability in its built-in HTTP server... High Unreviewed

CVE-2022-50890 was published Jan 14, 2026

CuteEditor for PHP (now referred to as Rich Text Editor) 6.6 contains a directory traversal... Moderate Unreviewed

CVE-2021-47751 was published Jan 14, 2026

YouPHPTube <= 7.8 contains a local file inclusion vulnerability that allows unauthenticated... High Unreviewed

CVE-2021-47749 was published Jan 14, 2026

In Eptura Archibus 2024.03.01.109, the "Run script" and "Server File" components of the "Database... High Unreviewed

CVE-2025-25652 was published Jan 13, 2026

An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability... Moderate Unreviewed

CVE-2025-58693 was published Jan 13, 2026

Zohocorp ManageEngine ADManager Plus versions below 7230 are vulnerable to Path Traversal in the... Moderate Unreviewed

CVE-2025-9435 was published Jan 13, 2026

A path traversal vulnerability exists in Zen MCP Server before 9.8.2 that allows authenticated... Moderate Unreviewed

CVE-2025-66689 was published Jan 12, 2026

Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability in... High Unreviewed

CVE-2025-69267 was published Jan 12, 2026

In Yonyou YonBIP v3 and before, the LoginWithV8 interface in the series data application service... High Unreviewed

CVE-2025-66744 was published Jan 9, 2026

Previous1…252 Next

Previous 1 2 3 4 5 … 251 252 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,293 advisories