GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,495

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,532 advisories

Filter by severity

Sort by

Least recently updated

An issue was discovered in Optimizely EPiServer.CMS.Core before 12.32.0. A medium-severity... Unknown Unreviewed

CVE-2025-22389 was published Jan 4, 2025

An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0... Critical Unreviewed

CVE-2024-55078 was published Jan 3, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Beee ACF City Selector allows... Moderate Unreviewed

CVE-2024-56264 was published Jan 2, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Webdeclic WPMasterToolKit allows... Critical Unreviewed

CVE-2024-56249 was published Jan 2, 2025

Huang Yaoshi Pharmaceutical Management Software through 16.0 allows arbitrary file upload via a ... Critical Unreviewed

CVE-2024-56829 was published Jan 2, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Azzaroco WP SuperBackup allows... Critical Unreviewed

CVE-2024-56064 was published Dec 31, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed

CVE-2024-56046 was published Dec 31, 2024

Some Honor products are affected by file writing vulnerability, successful exploitation could... Moderate Unreviewed

CVE-2024-47151 was published Dec 26, 2024

The DirectoryPress – Business Directory And Classified Ad Listing plugin for WordPress is... Moderate Unreviewed

CVE-2024-10584 was published Dec 24, 2024

IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 could be vulnerable... High Unreviewed

CVE-2024-40695 was published Dec 20, 2024

There is an unrestricted file upload vulnerability where it is possible for an authenticated user... High Unreviewed

CVE-2024-12700 was published Dec 20, 2024

A unrestricted upload of file with dangerous type vulnerability in epaper draft function in... Critical Unreviewed

CVE-2024-11984 was published Dec 19, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed

CVE-2024-56052 was published Dec 18, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed

CVE-2024-56050 was published Dec 18, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed

CVE-2024-56054 was published Dec 18, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a... Critical Unreviewed

CVE-2024-56057 was published Dec 18, 2024

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90. The component... Moderate Unreviewed

CVE-2024-55514 was published Dec 17, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in SeedProd LLC SeedProd Pro allows... Critical Unreviewed

CVE-2024-54285 was published Dec 16, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in SuitePlugins Video & Photo... Critical Unreviewed

CVE-2024-54370 was published Dec 16, 2024

The Crafthemes Demo Import plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-9698 was published Dec 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Siddharth Nagar Import Export... Critical Unreviewed

CVE-2024-54262 was published Dec 13, 2024

The Super Backup & Clone - Migrate for WordPress plugin for WordPress is vulnerable to arbitrary... Critical Unreviewed

CVE-2024-9290 was published Dec 13, 2024

The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2024-12042 was published Dec 13, 2024

The Opt-In Downloads plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed

CVE-2024-10590 was published Dec 12, 2024

The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.2,... Moderate Unreviewed

CVE-2024-44220 was published Dec 12, 2024

Previous 1 2 3 4 5 … 101 102 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,532 advisories