GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 278,942

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

202 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In CKSource CKFinder before 2.5.0.1 for ASP.NET, authenticated users could download any file from... Moderate Unreviewed

CVE-2016-20023 was published Dec 5, 2025

There is a relative path traversal vulnerability in the NI System Web Server that may result in... High Unreviewed

CVE-2025-12097 was published Dec 4, 2025

WebITR developed by Uniong has an Arbitrary File Read vulnerability, allowing authenticated... High Unreviewed

CVE-2025-13771 was published Nov 28, 2025

app/Model/EventReport.php in MISP before 2.5.27 allows path traversal in view picture for a site... Moderate Unreviewed

CVE-2025-66386 was published Nov 28, 2025

In RSA Authentication Agent before 7.4.7, service paths and shortcut paths may be vulnerable to... Critical Unreviewed

CVE-2024-47856 was published Nov 25, 2025

A Path Traversal vulnerability has been identified in the Email Security appliance allows an... Moderate Unreviewed

CVE-2025-40605 was published Nov 20, 2025

A vulnerability was found in code-projects Email Logging Interface 2.0. Affected is an unknown... Moderate Unreviewed

CVE-2025-13199 was published Nov 15, 2025

A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0... Critical Unreviewed

CVE-2025-64446 was published Nov 14, 2025

IQ-Support developed by IQ Service International has an Arbitrary File Read vulnerability,... High Unreviewed

CVE-2025-13161 was published Nov 14, 2025

A relative path traversal vulnerability has been reported to affect QuMagie. If a remote attacker... High Unreviewed

CVE-2025-58464 was published Nov 7, 2025

A relative path traversal vulnerability has been reported to affect Download Station. If a remote... Low Unreviewed

CVE-2025-58463 was published Nov 7, 2025

Dell Secure Connect Gateway (SCG) 5.0 Application and Appliance version(s) 5.26.00.00 - 5.30.00... Moderate Unreviewed

CVE-2025-46363 was published Oct 30, 2025

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4... High Unreviewed

CVE-2025-58429 was published Oct 24, 2025

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4... Moderate Unreviewed

CVE-2025-60023 was published Oct 24, 2025

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4... Moderate Unreviewed

CVE-2025-59776 was published Oct 24, 2025

A relative path traversal (ZipSlip) vulnerability was discovered in Productivity Suite software... High Unreviewed

CVE-2025-62498 was published Oct 24, 2025

A relative path traversal vulnerability was discovered in Productivity Suite software version 4... High Unreviewed

CVE-2025-58456 was published Oct 24, 2025

A relative path traversal vulnerability was discovered in Productivity Suite software version 4... High Unreviewed

CVE-2025-58078 was published Oct 24, 2025

Agentflow developed by Flowring has an Arbitrary File Reading vulnerability, allowing... High Unreviewed

CVE-2025-11898 was published Oct 17, 2025

The Slider Revolution plugin for WordPress is vulnerable to unauthorized access and modification... Moderate Unreviewed

CVE-2025-10249 was published Oct 9, 2025

In Ankitects Anki before 25.02.6, crafted sound file references could cause files to be written... Low Unreviewed

CVE-2025-62187 was published Oct 7, 2025

nncp before 8.12.0 allows path traversal (for reading or writing) during freqing and file saving... Moderate Unreviewed

CVE-2025-60020 was published Sep 24, 2025

The eHRD CTMS developed by Sunnet has an Arbitrary File Reading vulnerability, allowing remote... Moderate Unreviewed

CVE-2025-9570 was published Sep 23, 2025

In JetBrains TeamCity before 2025.07.2 path traversal was possible during project archive upload Moderate Unreviewed

CVE-2025-59456 was published Sep 17, 2025

A path traversal in the Control-M/Agent can lead to a local privilege escalation when an attacker... Critical Unreviewed

CVE-2025-55115 was published Sep 16, 2025

Previous1…9 Next

Previous 1 2 3 4 5 … 8 9 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

202 advisories