GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,036
Composer 4,791
Erlang 36
GitHub Actions 29
Go 2,370
Maven 5,681
npm 3,995
NuGet 720
pip 3,789
Pub 12
RubyGems 927
Rust 984
Swift 38

Unreviewed advisories

All unreviewed 261,626

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,958 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability has been found in code-projects Simple Forum 1.0 and classified as critical. This... Moderate Unreviewed

CVE-2025-6866 was published Jun 29, 2025

A vulnerability has been found in Dromara RuoYi-Vue-Plus 5.4.0 and classified as critical.... Moderate Unreviewed

CVE-2025-6925 was published Jun 30, 2025

Hikvision Streaming Media Management Server v2.3.5 uses default credentials that allow remote... High Unreviewed

CVE-2025-34058 was published Jul 1, 2025

A path traversal vulnerability exists in HPE Insight Remote Support (IRS) prior to v7.15.0.646. High Unreviewed

CVE-2025-37098 was published Jul 1, 2025

@modelcontextprotocol/server-filesystem vulnerability allows for path validation bypass via colliding path prefix High

CVE-2025-53110 was published for @modelcontextprotocol/server-filesystem (npm) Jul 1, 2025

The Home Villas | Real Estate WordPress Theme theme for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2025-5014 was published Jul 2, 2025

Sending a crafted SOAP "provision" operation message archive field within the Mobile Network... Moderate Unreviewed

CVE-2025-24329 was published Jul 2, 2025

Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network... Moderate Unreviewed

CVE-2025-24330 was published Jul 2, 2025

Path traversal in WebGUI HTTP endpoint in Infinera G42 version R6.1.3 allows remote... High Unreviewed

CVE-2025-27022 was published Jul 2, 2025

The Vikinger theme for WordPress is vulnerable to arbitrary file deletion due to insufficient... High Unreviewed

CVE-2025-4946 was published Jul 2, 2025

Microweber CMS API has authenticated local file inclusion vulnerability Moderate

CVE-2025-34076 was published for microweber/microweber (Composer) Jul 2, 2025

The JKDEVKIT plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient... High Unreviewed

CVE-2025-2932 was published Jul 3, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2025-49303 was published Jul 4, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-28980 was published Jul 4, 2025

A vulnerability, which was classified as critical, was found in Comodo Internet Security Premium... Moderate Unreviewed

CVE-2025-7098 was published Jul 7, 2025

A vulnerability classified as critical has been found in SimStudioAI sim up to 0.1.17. Affected... Moderate Unreviewed

CVE-2025-7107 was published Jul 7, 2025

A vulnerability classified as critical was found in risesoft-y9 Digital-Infrastructure up to 9.6... Moderate Unreviewed

CVE-2025-7108 was published Jul 7, 2025

LlamaIndex is vulnerable to Path Traversal attack through its ObsidianReader class High

CVE-2025-3046 was published for llama-index-readers-obsidian (pip) Jul 7, 2025

A vulnerability in the ObsidianReader class of the run-llama/llama_index repository, specifically... Moderate Unreviewed

CVE-2025-6210 was published Jul 7, 2025

Marvell QConvergeConsole deleteAppFile Directory Traversal Arbitrary File Deletion Vulnerability.... High Unreviewed

CVE-2025-6798 was published Jul 7, 2025

Marvell QConvergeConsole QLogicDownloadImpl Directory Traversal Arbitrary File Deletion and... Critical Unreviewed

CVE-2025-6793 was published Jul 7, 2025

Marvell QConvergeConsole getFileUploadBytes Directory Traversal Information Disclosure... High Unreviewed

CVE-2025-6799 was published Jul 7, 2025

Marvell QConvergeConsole deleteEventLogFile Directory Traversal Arbitrary File Deletion... High Unreviewed

CVE-2025-6805 was published Jul 7, 2025

Marvell QConvergeConsole getFileUploadSize Directory Traversal Information Disclosure... Moderate Unreviewed

CVE-2025-6795 was published Jul 7, 2025

Marvell QConvergeConsole compressFirmwareDumpFiles Directory Traversal Information Disclosure... High Unreviewed

CVE-2025-6804 was published Jul 7, 2025

Previous 1 2 … 275 276 277 278 279 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,958 advisories