Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
41
GitHub Actions
41
Go
3,051
Maven
5,000+
npm
4,791
NuGet
825
pip
4,389
Pub
12
RubyGems
988
Rust
1,145
Swift
50
Unreviewed advisories
All unreviewed
5,000+

1,273 advisories

Loading
Unrestricted Upload of File with Dangerous Type vulnerability in FantasticPlugins SUMO Affiliates... Critical Unreviewed
CVE-2025-32291 was published Jun 9, 2025
Zohocorp ManageEngine Exchange Reporter Plus versions 5721 and prior are vulnerable to Remote... Critical Unreviewed
CVE-2025-3835 was published Jun 9, 2025
An unrestricted upload of file with dangerous type vulnerability in the upload file function of... Critical Unreviewed
CVE-2025-48782 was published Jun 6, 2025
An arbitrary file upload vulnerability in the component /server/executeExec of JEHC-BPM v2.0.1... Critical Unreviewed
CVE-2025-45854 was published Jun 3, 2025
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2025-5058 was published May 24, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in StoreKeeper B.V. StoreKeeper for... Critical Unreviewed
CVE-2025-47687 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla Hospital Management... Critical Unreviewed
CVE-2025-47663 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in ELEXtensions ELEX WordPress... Critical Unreviewed
CVE-2025-47658 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Ajar Productions Ajar in5 Embed... Critical Unreviewed
CVE-2025-47642 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in printcart Printcart Web to Print... Critical Unreviewed
CVE-2025-47641 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in STAGGS STAGGS allows Upload a... Critical Unreviewed
CVE-2025-47637 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in wordwebsoftware Crossword... Critical Unreviewed
CVE-2025-46490 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in joy2012bd JP Students Result... Critical Unreviewed
CVE-2025-31916 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla Hospital Management... Critical Unreviewed
CVE-2025-39380 was published May 19, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a... Critical Unreviewed
CVE-2025-39402 was published May 19, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla WPAMS allows Upload a... Critical Unreviewed
CVE-2025-39401 was published May 19, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in TemplateInvaders TI WooCommerce... Critical Unreviewed
CVE-2025-47577 was published May 19, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Celestial Aura allows... Critical Unreviewed
CVE-2025-26892 was published May 19, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in dkszone Eximius allows Using... Critical Unreviewed
CVE-2025-26872 was published May 19, 2025
The Crawlomatic Multipage Scraper Post Generator plugin for WordPress is vulnerable to arbitrary... Critical Unreviewed
CVE-2025-4389 was published May 17, 2025
The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed
CVE-2025-4391 was published May 17, 2025
The 百度站长SEO合集(支持百度/神马/Bing/头条推送) plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed
CVE-2025-3917 was published May 15, 2025
The web management interface of Okcat Parking Management Platform from ZONG YU has an Arbitrary... Critical Unreviewed
CVE-2025-4556 was published May 12, 2025
SourceCodester Client Database Management System 1.0 is vulnerable to Remote code execution via... Critical Unreviewed
CVE-2025-46193 was published May 9, 2025
The Drag and Drop Multiple File Upload for WooCommerce plugin for WordPress is vulnerable to... Critical Unreviewed
CVE-2025-4403 was published May 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database