Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,810
Erlang
36
GitHub Actions
31
Go
2,396
Maven
5,000+
npm
4,030
NuGet
721
pip
3,820
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,015 advisories

Loading
A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical.... Moderate Unreviewed
CVE-2025-6772 was published Jun 27, 2025
A vulnerability was found in gooaclok819 sublinkX up to 1.8. It has been rated as critical.... Moderate Unreviewed
CVE-2025-6774 was published Jun 27, 2025
A vulnerability classified as critical was found in xiaoyunjie openvpn-cms-flask up to 1.2.7.... Moderate Unreviewed
CVE-2025-6776 was published Jun 27, 2025
HKUDS LightRAG allows Path Traversal via function upload_to_input_dir Moderate
CVE-2025-6773 was published for lightrag-hku (pip) Jun 27, 2025
A vulnerability classified as critical has been found in chatchat-space Langchain-Chatchat up to... Moderate Unreviewed
CVE-2025-6853 was published Jun 29, 2025
A vulnerability classified as problematic was found in chatchat-space Langchain-Chatchat up to 0... Moderate Unreviewed
CVE-2025-6854 was published Jun 29, 2025
A vulnerability, which was classified as critical, has been found in chatchat-space Langchain... Moderate Unreviewed
CVE-2025-6855 was published Jun 29, 2025
A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2025-6866 was published Jun 29, 2025
A vulnerability has been found in Dromara RuoYi-Vue-Plus 5.4.0 and classified as critical.... Moderate Unreviewed
CVE-2025-6925 was published Jun 30, 2025
Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network... Moderate Unreviewed
CVE-2025-24330 was published Jul 2, 2025
Sending a crafted SOAP "provision" operation message archive field within the Mobile Network... Moderate Unreviewed
CVE-2025-24329 was published Jul 2, 2025
Microweber CMS API has authenticated local file inclusion vulnerability Moderate
CVE-2025-34076 was published for microweber/microweber (Composer) Jul 2, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-49303 was published Jul 4, 2025
A vulnerability, which was classified as critical, was found in Comodo Internet Security Premium... Moderate Unreviewed
CVE-2025-7098 was published Jul 7, 2025
A vulnerability classified as critical has been found in SimStudioAI sim up to 0.1.17. Affected... Moderate Unreviewed
CVE-2025-7107 was published Jul 7, 2025
A vulnerability classified as critical was found in risesoft-y9 Digital-Infrastructure up to 9.6... Moderate Unreviewed
CVE-2025-7108 was published Jul 7, 2025
LlamaIndex vulnerability in its ObsidianReader class can lead to Path Traversal exploit Moderate
CVE-2025-6210 was published for llama-index-readers-obsidian (pip) Jul 7, 2025
Dagster vulnerable to Path Traversal attack through its /logs endpoint Moderate
CVE-2023-51232 was published for dagster (pip) Jul 7, 2025
Marvell QConvergeConsole getFileUploadSize Directory Traversal Information Disclosure... Moderate Unreviewed
CVE-2025-6795 was published Jul 7, 2025
Marvell QConvergeConsole getDriverTmpPath Directory Traversal Information Disclosure... Moderate Unreviewed
CVE-2025-6807 was published Jul 7, 2025
SAPCAR improperly sanitizes the file paths while extracting SAPCAR archives. Due to this, an... Moderate Unreviewed
CVE-2025-42970 was published Jul 8, 2025
A vulnerability exists in Advantech iView in NetworkServlet.processImportRequest() that could... Moderate Unreviewed
CVE-2025-46704 was published Jul 11, 2025
A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It... Moderate Unreviewed
CVE-2025-7452 was published Jul 11, 2025
A vulnerability was found in letseeqiji gorobbs up to 1.0.8. It has been classified as critical.... Moderate Unreviewed
CVE-2025-7450 was published Jul 11, 2025
A vulnerability exists on all versions of Ivanti Policy Secure below 22.6R1 where an... Moderate Unreviewed
CVE-2023-39339 was published Jul 12, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database