GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,919
Composer 4,476
Erlang 33
GitHub Actions 24
Go 2,207
Maven 5,433
npm 3,858
NuGet 696
pip 3,639
Pub 12
RubyGems 913
Rust 918
Swift 38

Unreviewed advisories

All unreviewed 249,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

136 advisories

Filter by severity

Sort by

Least recently updated

An unauthorized file deletion vulnerability exists in the latest version of the Polyaxon platform... High Unreviewed

CVE-2024-9363 was published Mar 20, 2025

A path traversal vulnerability exists in the latest version of stangirard/quivr. This... Moderate Unreviewed

CVE-2024-6583 was published Mar 20, 2025

A vulnerability in the sanitize_path function in parisneo/lollms-webui v10 - latest allows an... Moderate Unreviewed

CVE-2024-7058 was published Mar 20, 2025

A vulnerability in the `start_app_server` function of parisneo/lollms-webui V12 (Strawberry)... Moderate Unreviewed

CVE-2024-10019 was published Mar 20, 2025

A path traversal vulnerability exists in the 'document uploads manager' feature of mintplex-labs... High Unreviewed

CVE-2024-10513 was published Mar 20, 2025

The API used to interact with documents in the application contains two endpoints with a flaw... High Unreviewed

CVE-2024-54449 was published Mar 14, 2025

The API used to interact with documents in the application contains a flaw that allows an... High Unreviewed

CVE-2024-12019 was published Mar 14, 2025

The WP Ghost (Hide My WP Ghost) – Security & Firewall plugin for WordPress is vulnerable to Path... High Unreviewed

CVE-2025-2056 was published Mar 14, 2025

NVIDIA Nemo Framework contains a vulnerability where a user could cause a relative path traversal... High Unreviewed

CVE-2025-23360 was published Mar 11, 2025

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code... High Unreviewed

CVE-2025-26645 was published Mar 11, 2025

Unitronics Unistream Unilogic – Versions prior to 1.35.227 - CWE-23: Relative Path Traversal High Unreviewed

CVE-2024-27770 was published Mar 18, 2024

When uploading organism or sequence data via the web interface, GMOD Apollo will unzip and... Critical Unreviewed

CVE-2025-23410 was published Mar 5, 2025

Relative Path Traversal vulnerability in NotFound Delete Comments By Status allows PHP Local File... High Unreviewed

CVE-2025-25130 was published Mar 3, 2025

A vulnerability has been found in PHPGurukul Online Nurse Hiring System 1.0 and classified as... Moderate Unreviewed

CVE-2025-1588 was published Feb 23, 2025

IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 is vulnerable to local file inclusion... Moderate Unreviewed

CVE-2024-56340 was published Feb 28, 2025

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2024-13791 was published Feb 14, 2025

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2025-0822 was published Feb 15, 2025

A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed

CVE-2025-1599 was published Feb 24, 2025

Relative Path Traversal vulnerability in Ping Identity PingAM Java Policy Agent allows Parameter... Critical Unreviewed

CVE-2025-20059 was published Feb 20, 2025

A CWE-23 "Relative Path Traversal" in the file upload mechanism in Q-Free MaxTime less than or... High Unreviewed

CVE-2025-26349 was published Feb 12, 2025

Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance... High Unreviewed

CVE-2023-30630 was published Apr 13, 2023

A vulnerability has been found in Safetytest Cloud-Master Server up to 1.1.1 and classified as... Moderate Unreviewed

CVE-2025-1086 was published Feb 7, 2025

An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a... Critical Unreviewed

CVE-2021-40870 was published May 24, 2022

Dell OpenManage Enterprise, v4.0 and prior, contain(s) a path traversal vulnerability. An... Moderate Unreviewed

CVE-2024-25944 was published Mar 29, 2024

A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and... Moderate Unreviewed

CVE-2024-46664 was published Jan 14, 2025

Previous 1 2 3 4 5 6 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

136 advisories