Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,569 advisories

Loading
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-8262 was published Mar 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-26534 was published Mar 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-26540 was published Mar 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-25162 was published Mar 3, 2025
Oxidized Web RANCID migration page allows unauthenticated user to gain control over Linux user account Critical
CVE-2025-27590 was published for oxidized-web (RubyGems) Mar 3, 2025
The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is... High Unreviewed
CVE-2024-13910 was published Mar 1, 2025
IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 and 12.0.0 through 12.0.4 could allow a remote... Moderate Unreviewed
CVE-2025-0823 was published Feb 28, 2025
In XIQ-SE before 24.2.11, due to a missing access control check, a path traversal is possible,... Critical Unreviewed
CVE-2024-38292 was published Feb 28, 2025
A vulnerability, which was classified as critical, was found in zyx0814 Pichome 2.1.0. This... Moderate Unreviewed
CVE-2025-1743 was published Feb 27, 2025
IBM EntireX 11.1 could allow an authenticated attacker to traverse directories on the system. An... Moderate Unreviewed
CVE-2024-54169 was published Feb 27, 2025
An issue in the component admin_template.php of SUCMS v1.0 allows attackers to execute a... High Unreviewed
CVE-2025-25759 was published Feb 27, 2025
The Car Dealer Automotive WordPress Theme – Responsive theme for WordPress is vulnerable to... High Unreviewed
CVE-2025-1282 was published Feb 27, 2025
Mautic allows Relative Path Traversal in assets file upload Moderate
CVE-2022-25773 was published for mautic/core (Composer) Feb 26, 2025
patrykgruszka majkelstick
escopecz
SeaCMS 13.3 was discovered to contain an arbitrary file read vulnerability in the... Moderate Unreviewed
CVE-2025-25800 was published Feb 26, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-26905 was published Feb 25, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-26753 was published Feb 25, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-26752 was published Feb 25, 2025
Mattermost allows reading arbitrary files related to importing boards Critical
CVE-2025-25279 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 24, 2025
Mattermost allows reading arbitrary files Critical
CVE-2025-20051 was published for github.com/mattermost/mattermost/server/v8 (Go) Feb 24, 2025
A vulnerability has been found in PHPGurukul Online Nurse Hiring System 1.0 and classified as... Moderate Unreviewed
CVE-2025-1588 was published Feb 23, 2025
A vulnerability, which was classified as problematic, has been found in iteachyou Dreamer CMS 4.1... Moderate Unreviewed
CVE-2025-1543 was published Feb 21, 2025
MasterSAM Star Gate 11 is vulnerable to directory traversal via /adama/adama/downloadService. An... Moderate Unreviewed
CVE-2024-55457 was published Feb 20, 2025
IBM OpenPages with Watson 8.3 and 9.0  IBM OpenPages could allow a remote attacker to traverse... Moderate Unreviewed
CVE-2024-49780 was published Feb 20, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-22663 was published Feb 18, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-1035 was published Feb 18, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database