GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,481
Composer 5,257
Erlang 41
GitHub Actions 41
Go 3,051
Maven 6,276
npm 4,791
NuGet 825
pip 4,389
Pub 12
RubyGems 988
Rust 1,145
Swift 50

Unreviewed advisories

All unreviewed 291,442

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,273 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows... Critical Unreviewed

CVE-2025-58963 was published Oct 22, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Gesundheit Bewegt GmbH Zippy... Critical Unreviewed

CVE-2025-52758 was published Oct 22, 2025

An unrestricted upload of file with dangerous type vulnerability in the upload file function of... Critical Unreviewed

CVE-2025-31342 was published Oct 20, 2025

Document Management System developed by Excellent Infotek has an Arbitrary File Upload... Critical Unreviewed

CVE-2025-11948 was published Oct 20, 2025

The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2025-11391 was published Oct 18, 2025

An arbitrary file upload vulnerability in SigningHub v8.6.8 allows attackers to execute arbitrary... Critical Unreviewed

CVE-2025-56218 was published Oct 17, 2025

Some versions of Hikvision's iSecure Center Product have an improper file upload control... Critical Unreviewed

CVE-2023-28814 was published Oct 17, 2025

The Flex QR Code Generator plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-10041 was published Oct 15, 2025

SmartBI V8, V9, and V10 contain an unrestricted file upload vulnerability via the RMIServlet... Critical Unreviewed

CVE-2023-7305 was published Oct 15, 2025

Due to missing verification of file type or content, SAP Supplier Relationship Management allows... Critical Unreviewed

CVE-2025-42910 was published Oct 14, 2025

The Ovatheme Events Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-6553 was published Oct 11, 2025

Due to client-controlled permission check parameter, PAD CMS's photo upload functionality allows... Critical Unreviewed

CVE-2025-7065 was published Sep 30, 2025

Due to client-controlled permission check parameter, PAD CMS's file upload functionality allows... Critical Unreviewed

CVE-2025-7063 was published Sep 30, 2025

Due to client-controlled permission check parameter, PAD CMS's upload photo functionality allows... Critical Unreviewed

CVE-2025-8120 was published Sep 30, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in HaruTheme WooCommerce Designer... Critical Unreviewed

CVE-2025-60219 was published Sep 26, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in TalentSys Consulting Information... Critical Unreviewed

CVE-2025-9846 was published Sep 23, 2025

The Product Options and Price Calculation Formulas for WooCommerce – Uni CPO (Premium) plugin for... Critical Unreviewed

CVE-2025-10412 was published Sep 23, 2025

The Podlove Podcast Publisher plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-10147 was published Sep 23, 2025

osCommerce versions up to and including 2.2 RC2a contain a vulnerability in its administrative... Critical Unreviewed

CVE-2009-20006 was published Sep 16, 2025

File Upload vulnerability in SueamCMS v.0.1.2 allows a remote attacker to execute arbitrary code... Critical Unreviewed

CVE-2025-55835 was published Sep 12, 2025

The Doccure theme for WordPress is vulnerable to arbitrary file uploads due to missing file type... Critical Unreviewed

CVE-2025-9113 was published Sep 8, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in CreedAlly Bulk Featured Image... Critical Unreviewed

CVE-2025-58819 was published Sep 5, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Mojoomla School Management... Critical Unreviewed

CVE-2025-31100 was published Aug 31, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in add-ons.org Drag and Drop File... Critical Unreviewed

CVE-2025-49387 was published Aug 28, 2025

SS1 Ver.16.0.0.10 and earlier (Media version:16.0.0a and earlier) allows a remote unauthenticated... Critical Unreviewed

CVE-2025-53970 was published Aug 28, 2025

Previous 1…5…51 Next

Previous 1 2 3 4 5 6 7 … 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,273 advisories