Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,180 advisories

Loading
A vulnerability has been identified in Omnivise T3000 Application Server (All versions). Affected... Moderate Unreviewed
CVE-2024-38878 was published Aug 2, 2024
There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to... Moderate Unreviewed
CVE-2021-3426 was published May 24, 2022
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote... Moderate Unreviewed
CVE-2020-4430 was published May 24, 2022
A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed
CVE-2025-43190 was published Sep 16, 2025
A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed
CVE-2025-43314 was published Sep 16, 2025
A path handling issue was addressed with improved validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43250 was published Jul 30, 2025
A parsing issue in the handling of directory paths was addressed with improved path validation.... Moderate Unreviewed
CVE-2025-43206 was published Jul 30, 2025
A path handling issue was addressed with improved validation. This issue is fixed in macOS... Moderate Unreviewed
CVE-2025-43191 was published Jul 30, 2025
CrushFTP 9.x and 10.x through 10.8.4 and 11.x through 11.3.1 allows directory traversal via the ... Moderate Unreviewed
CVE-2025-32103 was published Apr 15, 2025
Nagvis before 1.9.34 was discovered to contain an arbitrary file read vulnerability via the... Moderate Unreviewed
CVE-2022-46945 was published May 26, 2023
A remote code execution vulnerability in Mitel MiVoice Connect Client before 214.100.1223.0 could... Moderate Unreviewed
CVE-2020-12456 was published May 24, 2022
A security flaw has been discovered in jeecgboot jeewx-boot up to... Moderate Unreviewed
CVE-2025-12626 was published Nov 3, 2025
A vulnerability was found in Kingdee Cloud-Starry-Sky Enterprise Edition up to 8.2. It has been... Moderate Unreviewed
CVE-2025-8516 was published Aug 4, 2025
The Zombify plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed
CVE-2025-8385 was published Oct 31, 2025
Allegra DatabaseBackupBL Directory Traversal Information Disclosure Vulnerability. This... Moderate Unreviewed
CVE-2025-11466 was published Oct 29, 2025
A flaw has been found in OpenWGA 7.11.12 Build 737. This affects an unknown function of the file... Moderate Unreviewed
CVE-2025-12250 was published Oct 27, 2025
A weakness has been identified in givanz Vvveb up to 1.0.7.3. This issue affects the function... Moderate Unreviewed
CVE-2025-12203 was published Oct 27, 2025
Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers... Moderate Unreviewed
CVE-2025-21048 was published Oct 10, 2025
Affected versions of Atlassian Jira Server and Data Center allow remote attackers to read... Moderate Unreviewed
CVE-2021-26086 was published May 24, 2022
Mitel MiCollab through 9.8 SP2 could allow an authenticated attacker with administrative... Moderate Unreviewed
CVE-2024-55550 was published Dec 10, 2024
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post... Moderate Unreviewed
CVE-2021-20023 was published May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-859 1.06B01. It has been... Moderate Unreviewed
CVE-2024-0769 was published Jan 21, 2024
Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18... Moderate Unreviewed
CVE-2020-8195 was published May 24, 2022
A path traversal vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023... Moderate Unreviewed
CVE-2023-41266 was published Aug 30, 2023
The default server implementation of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO... Moderate Unreviewed
CVE-2018-18809 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database