Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,857
Maven
5,000+
npm
4,488
NuGet
780
pip
4,243
Pub
12
RubyGems
975
Rust
1,095
Swift
49
Unreviewed advisories
All unreviewed
5,000+

12 advisories

Loading
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local... High Unreviewed
CVE-2022-20775 was published Oct 1, 2022
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local... High Unreviewed
CVE-2022-20818 was published Oct 1, 2022
: Path Traversal: '/../filedir' vulnerability in Neutron IP Camera allows Absolute Path Traversal... High Unreviewed
CVE-2023-6118 was published Nov 23, 2023
Path Traversal: '/../filedir' vulnerability in Biges Safe Life Technologies Electronics Inc.... High Unreviewed
CVE-2023-6919 was published Jan 26, 2024
Franklin Fueling System EVO 550 and EVO 5000 are vulnerable to a Path Traversal vulnerability... High Unreviewed
CVE-2024-2442 was published Mar 19, 2024
pyrage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution High
CVE-2024-56327 was published for pyrage (pip) Dec 19, 2024
gaby woodruffw
Credited to gaby and woodruffw
age vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution Moderate
GHSA-32gq-x56h-299c was published for filippo.io/age (Go) Dec 18, 2024
rage vulnerable to malicious plugin names, recipients, or identities causing arbitrary binary execution Moderate
GHSA-4fg7-vxc8-qx5w was published for age (Rust) Dec 18, 2024
The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Directory... High Unreviewed
CVE-2023-6947 was published Dec 10, 2024
Denial of service (DoS) vulnerability in the office service. Successful exploitation of this... Low Unreviewed
CVE-2025-58286 was published Oct 11, 2025
Riello UPS NetMan 208 Application before 1.12 allows cgi-bin/certsupload.cgi /../ directory... Critical Unreviewed
CVE-2025-68916 was published Dec 24, 2025
Swing Music has a Directory Traversal & Filesystem can be accessed by a non-admin user Moderate
CVE-2026-23877 was published for swingmusic (pip) Jan 21, 2026
d-virtuosa
Credited to d-virtuosa
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database