Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,801
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,005
NuGet
720
pip
3,809
Pub
12
RubyGems
928
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+

111 advisories

Loading
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7 and 9.1.10, and Splunk Cloud Platform... Moderate Unreviewed
CVE-2025-20320 was published Jul 7, 2025
Path Traversal vulnerability in VaultDweller Leyka allows PHP Local File Inclusion. This issue... High Unreviewed
CVE-2025-52805 was published Jul 4, 2025
Path Traversal vulnerability in TMRW-studio Katerio - Magazine allows PHP Local File Inclusion.... High Unreviewed
CVE-2025-52810 was published Jun 27, 2025
Path Traversal vulnerability in Creanncy Davenport - Versatile Blog and Magazine WordPress Theme... High Unreviewed
CVE-2025-52811 was published Jun 27, 2025
Path Traversal vulnerability in yannisraft Aeroscroll Gallery – Infinite Scroll Image Gallery ... High Unreviewed
CVE-2025-49451 was published Jun 17, 2025
CyberData 011209 Intercom could allow an authenticated attacker to upload arbitrary files to... Critical Unreviewed
CVE-2025-30515 was published Jun 10, 2025
Path Traversal vulnerability in Mikado-Themes MediClinic allows PHP Local File Inclusion. This... High Unreviewed
CVE-2025-49295 was published Jun 9, 2025
Path Traversal vulnerability in Mikado-Themes GrandPrix allows PHP Local File Inclusion. This... High Unreviewed
CVE-2025-49296 was published Jun 9, 2025
Path Traversal vulnerability in Mikado-Themes Grill and Chow allows PHP Local File Inclusion.... High Unreviewed
CVE-2025-49297 was published Jun 9, 2025
Path Traversal vulnerability in Frenify Arlo allows PHP Local File Inclusion. This issue affects... High Unreviewed
CVE-2025-39475 was published Jun 9, 2025
A path traversal vulnerability in RSFirewall component 2.9.7 - 3.1.5 for Joomla was discovered.... Moderate Unreviewed
CVE-2025-27445 was published Jun 5, 2025
Path Traversal vulnerability in WF Steuerungstechnik GmbH airleader MASTER allows Retrieve... Critical Unreviewed
CVE-2025-5598 was published Jun 4, 2025
Path Traversal: '.../...//' vulnerability in ctltwp Section Widget allows Path Traversal.This... Moderate Unreviewed
CVE-2025-46441 was published May 19, 2025
Path Traversal: '.../...//' vulnerability in bslthemes Tastyc allows PHP Local File Inclusion... High Unreviewed
CVE-2025-27010 was published May 19, 2025
Path Traversal vulnerability in WHMPress WHMpress allows Relative Path Traversal. This issue... High Unreviewed
CVE-2025-39492 was published May 16, 2025
Path Traversal vulnerability in WHMPress WHMpress allows Path Traversal. This issue affects... High Unreviewed
CVE-2025-39491 was published May 16, 2025
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... Moderate Unreviewed
CVE-2025-40573 was published May 13, 2025
Path Traversal vulnerability in ilmosys Open Close WooCommerce Store allows PHP Local File... High Unreviewed
CVE-2025-47649 was published May 7, 2025
Path Traversal vulnerability in Fernando Briano List category posts allows PHP Local File... High Unreviewed
CVE-2025-47636 was published May 7, 2025
io.jmix.localfs:jmix-localfs has a Path Traversal in Local File Storage Moderate
CVE-2025-32950 was published for io.jmix.localfs:jmix-localfs (Maven) Apr 22, 2025
shadowsock5 AnonySE26
Path Traversal: '.../...//' vulnerability in ThimPress Ivy School allows PHP Local File Inclusion... High Unreviewed
CVE-2025-39470 was published Apr 18, 2025
Overview   The product uses external input to construct a pathname that should be within a... Moderate Unreviewed
CVE-2025-24908 was published Apr 17, 2025
Overview   The product uses external input to construct a pathname that should be within a... Moderate Unreviewed
CVE-2025-24907 was published Apr 17, 2025
Path Traversal vulnerability in Quý Lê 91 Administrator Z allows Path Traversal. This issue... Moderate Unreviewed
CVE-2025-39598 was published Apr 16, 2025
Path Traversal vulnerability in NotFound WPJobBoard allows Path Traversal. This issue affects... Moderate Unreviewed
CVE-2025-30966 was published Apr 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database