GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 27,250
Composer 5,336
Erlang 44
GitHub Actions 43
Go 3,181
Maven 6,302
npm 5,159
NuGet 863
pip 4,474
Pub 12
RubyGems 991
Rust 1,185
Swift 51

Unreviewed advisories

All unreviewed 293,692

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

104 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability has been identified in SICAM SIAPP SDK (All versions < V2.1.7). The affected... Moderate Unreviewed

CVE-2026-25605 was published Mar 10, 2026

Dell Unisphere for PowerMax, version(s) 10.2, contain(s) an External Control of File Name or Path... Moderate Unreviewed

CVE-2026-26361 was published Feb 19, 2026

An arbitrary file overwrite vulnerability in the file import process of Comic Book Reader v1.0.95... Moderate Unreviewed

CVE-2025-69621 was published Feb 4, 2026

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform... Moderate Unreviewed

CVE-2026-20925 was published Jan 13, 2026

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform... Moderate Unreviewed

CVE-2026-20872 was published Jan 13, 2026

The EmailKit plugin for WordPress is vulnerable to Arbitrary File Read via Path Traversal in all... Moderate Unreviewed

CVE-2025-14059 was published Jan 7, 2026

The WP User Manager plugin for WordPress is vulnerable to Arbitrary File Deletion in all versions... Moderate Unreviewed

CVE-2025-13320 was published Dec 12, 2025

External control of file name or path in Zoom Rooms for macOS before version 6.6.0 may allow an... Moderate Unreviewed

CVE-2025-67461 was published Dec 10, 2025

The AI Engine for WordPress: ChatGPT, GPT Content Generator plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2025-13380 was published Nov 25, 2025

The 简数采集器 plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and... Moderate Unreviewed

CVE-2025-11973 was published Nov 21, 2025

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow... Moderate Unreviewed

CVE-2025-64738 was published Nov 13, 2025

External control of file name or path in certain Zoom Clients may allow an unauthenticated user... Moderate Unreviewed

CVE-2025-64739 was published Nov 13, 2025

TEC-IT TBarCode version 11.15 contains a vulnerability in the TBarCode11.ocx ActiveX/OCX control... Moderate Unreviewed

CVE-2022-4983 was published Nov 13, 2025

External control of file name or path for some Intel(R) CIP software before version WIN_DCA_2.4.0... Moderate Unreviewed

CVE-2025-20614 was published Nov 11, 2025

The Import WP – Export and Import CSV and XML files to WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2025-12137 was published Nov 1, 2025

External Control of File Name or Path vulnerability in opentext Flipper allows Path Traversal. ... Moderate Unreviewed

CVE-2025-8050 was published Oct 21, 2025

External Control of File Name or Path vulnerability in opentext Flipper allows Path Traversal.... Moderate Unreviewed

CVE-2025-8048 was published Oct 20, 2025

The Media Library Assistant plugin for WordPress is vulnerable to limited file reading in all... Moderate Unreviewed

CVE-2025-11738 was published Oct 18, 2025

External control of file name or path in Windows Core Shell allows an unauthorized attacker to... Moderate Unreviewed

CVE-2025-59244 was published Oct 14, 2025

External control of file name or path in Windows Core Shell allows an unauthorized attacker to... Moderate Unreviewed

CVE-2025-59185 was published Oct 14, 2025

A security flaw has been discovered in Campcodes Recruitment Management System 1.0. This impacts... Moderate Unreviewed

CVE-2025-9920 was published Sep 9, 2025

A weakness has been identified in Campcodes Payroll Management System 1.0. The affected element... Moderate Unreviewed

CVE-2025-9529 was published Aug 27, 2025

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network... Moderate Unreviewed

CVE-2025-20269 was published Aug 20, 2025

External control of file name or path in Windows Security App allows an authorized attacker to... Moderate Unreviewed

CVE-2025-53769 was published Aug 12, 2025

External control of file name or path issue exists in RICOH Streamline NX V3 PC Client versions 3... Moderate Unreviewed

CVE-2025-36506 was published Jun 13, 2025

Previous1…5 Next

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

104 advisories