Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,780
Erlang
36
GitHub Actions
29
Go
2,344
Maven
5,000+
npm
3,973
NuGet
719
pip
3,770
Pub
12
RubyGems
923
Rust
978
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,902 advisories

Loading
Traefik allows path traversal using url encoding Low
CVE-2025-47952 was published for github.com/traefik/traefik (Go) May 28, 2025
antonjanrutten
auth-js Vulnerable to Insecure Path Routing from Malformed User Input Low
CVE-2025-48370 was published for @supabase/auth-js (npm) May 27, 2025
kos0ng
In SIGB PMB before 8.0.1.2, attackers can achieve Local File Inclusion and remote code execution. Moderate Unreviewed
CVE-2025-48744 was published May 27, 2025
A vulnerability classified as problematic was found in H3C SecCenter SMP-E1114P02 up to 20250513.... Moderate Unreviewed
CVE-2025-5161 was published May 26, 2025
A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. It has been rated as... Moderate Unreviewed
CVE-2025-5159 was published May 26, 2025
A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. It has been declared as... Moderate Unreviewed
CVE-2025-5158 was published May 26, 2025
A vulnerability classified as problematic has been found in H3C SecCenter SMP-E1114P02 up to... Moderate Unreviewed
CVE-2025-5160 was published May 26, 2025
A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. It has been classified as... Moderate Unreviewed
CVE-2025-5157 was published May 26, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-48273 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-47535 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-47603 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-47513 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-46527 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-47512 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-47492 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-46486 was published May 23, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-31053 was published May 23, 2025
The Hot Random Image plugin for WordPress is vulnerable to Path Traversal in all versions up to,... Moderate Unreviewed
CVE-2025-4419 was published May 22, 2025
Cloudera Hue Ace Editor Directory Traversal Information Disclosure Vulnerability. This... High Unreviewed
CVE-2025-3884 was published May 22, 2025
Allegra isZipEntryValide Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2025-3486 was published May 22, 2025
The Madara – Responsive and modern WordPress theme for manga sites theme for WordPress is... Critical Unreviewed
CVE-2025-4524 was published May 21, 2025
A vulnerability has been found in Kingdee Cloud Galaxy Private Cloud BBC System up to 9.0 Patch... Moderate Unreviewed
CVE-2025-5029 was published May 21, 2025
Improper limitation of pathname in Circuit Provisioning and File Import applications allows... Critical Unreviewed
CVE-2025-48017 was published May 20, 2025
VMware Cloud Foundation contains a directory traversal vulnerability. A malicious actor with... High Unreviewed
CVE-2025-41229 was published May 20, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-3223 was published May 19, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database