Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,785
Erlang
36
GitHub Actions
29
Go
2,358
Maven
5,000+
npm
3,979
NuGet
720
pip
3,777
Pub
12
RubyGems
924
Rust
981
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,585 advisories

Loading
Unrestricted Upload of File with Dangerous Type vulnerability in getredhawkstudio File Manager... Critical Unreviewed
CVE-2025-53260 was published Jun 27, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in HaruTheme Drag and Drop Multiple... Critical Unreviewed
CVE-2025-49885 was published Jun 27, 2025
Vulnerability in fusionforge in the shipped Apache configuration, where the web server may... Critical Unreviewed
CVE-2014-0468 was published Jun 26, 2025
If a user saved a response from the Network tab in Devtools using the Save As context menu option... High Unreviewed
CVE-2025-6435 was published Jun 26, 2025
The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit... High Unreviewed
CVE-2025-6206 was published Jun 26, 2025
An issue was discovered on IROAD Dashcam FX2 devices. An unauthenticated file upload endpoint can... Critical Unreviewed
CVE-2025-30131 was published Jun 26, 2025
Unrestricted upload of file with dangerous type issue exists in WRC-2533GST2 and WRC-1167GST2. If... Moderate Unreviewed
CVE-2025-36519 was published Jun 24, 2025
The Beaver Builder Plugin (Starter Version) plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2025-4102 was published Jun 20, 2025
The Versa Director SD-WAN orchestration platform provides an option to upload various types of... High Unreviewed
CVE-2025-23171 was published Jun 19, 2025
An issue in EfroTech Time Trax v.1.0 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-46157 was published Jun 18, 2025
The Ultra Addons for Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads... High Unreviewed
CVE-2025-6220 was published Jun 18, 2025
The CSV Me plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file... High Unreviewed
CVE-2025-6086 was published Jun 18, 2025
The Pixabay Images plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2025-4413 was published Jun 18, 2025
Sitecore PowerShell Extensions, an add-on to Sitecore Experience Manager (XM) and Experience... High Unreviewed
CVE-2025-34511 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Fastw3b LLC FW Food Menu allows... Critical Unreviewed
CVE-2025-49447 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in merkulove Reformer for Elementor... Critical Unreviewed
CVE-2025-49444 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in NasaTheme Flozen allows Upload a... Critical Unreviewed
CVE-2025-49071 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in RexTheme WP VR allows Upload a... Critical Unreviewed
CVE-2025-47452 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG allows Upload a... Critical Unreviewed
CVE-2025-47559 was published Jun 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in ovatheme Ovatheme Events Manager... Critical Unreviewed
CVE-2025-32510 was published Jun 17, 2025
The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-3515 was published Jun 17, 2025
A vulnerability, which was classified as critical, was found in SourceCodester Simple Food... Moderate Unreviewed
CVE-2025-6161 was published Jun 17, 2025
The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due... High Unreviewed
CVE-2025-3234 was published Jun 14, 2025
The Workreap plugin for WordPress, used by the Workreap - Freelance Marketplace WordPress Theme,... High Unreviewed
CVE-2025-5012 was published Jun 12, 2025
An unrestricted file upload vulnerability exists in the Product Image section of the VirtueMart... High Unreviewed
CVE-2025-6002 was published Jun 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database