GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,216
Composer 4,894
Erlang 38
GitHub Actions 38
Go 2,556
Maven 6,025
npm 4,228
NuGet 747
pip 4,000
Pub 12
RubyGems 953
Rust 1,041
Swift 45

Unreviewed advisories

All unreviewed 273,599

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

7,263 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed

CVE-2025-43889 was published Oct 7, 2025

A client-side path traversal vulnerability was discovered in the web management interface front... Moderate Unreviewed

CVE-2025-3718 was published Oct 7, 2025

A path traversal vulnerability was discovered in the Time Machine functionality due to missing... High Unreviewed

CVE-2025-40889 was published Oct 7, 2025

Directory Traversal vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F/W... Moderate Unreviewed

CVE-2025-60969 was published Oct 6, 2025

A vulnerability was detected in Four-Faith Water Conservancy Informatization Platform up to 2.2.... Moderate Unreviewed

CVE-2025-11337 was published Oct 6, 2025

A security vulnerability has been detected in Four-Faith Water Conservancy Informatization... Moderate Unreviewed

CVE-2025-11336 was published Oct 6, 2025

A remote, unauthorized attacker can brute force folders and files and read them like private keys... Moderate Unreviewed

CVE-2025-58591 was published Oct 6, 2025

It's possible to brute force folders and files, what can be used by an attacker to steal sensitve... Moderate Unreviewed

CVE-2025-58590 was published Oct 6, 2025

clearml is vulnerable to Path Traversal through its `safe_extract` function Moderate

CVE-2025-8917 was published for clearml (pip) Oct 5, 2025

ZenML is vulnerable to Path Traversal through its `PathMaterializer` class Moderate

CVE-2025-8406 was published for zenml (pip) Oct 5, 2025

Vulnerability in the Oracle Concurrent Processing product of Oracle E-Business Suite (component:... Critical Unreviewed

CVE-2025-61882 was published Oct 5, 2025

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2025-47211 was published Oct 3, 2025

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker... Moderate Unreviewed

CVE-2025-33034 was published Oct 3, 2025

Canonical LXD Path Traversal Vulnerability in Instance Log File Retrieval Function High

CVE-2025-54293 was published for github.com/canonical/lxd (Go) Oct 2, 2025

Path traversal vulnerability in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to... High Unreviewed

CVE-2025-59744 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Download of Code... High Unreviewed

CVE-2025-11182 was published Oct 2, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Unrestricted... Critical Unreviewed

CVE-2025-11221 was published Oct 2, 2025

An attacker can obtain server information using Path Traversal vulnerability to conduct SQL... High Unreviewed

CVE-2025-11020 was published Oct 2, 2025

auth0-PHP SDK Does Not Properly Handle File Types in Bulk User Import Low

CVE-2025-58769 was published for auth0/auth0-php (Composer) Oct 1, 2025

The All in One Music Player plugin for WordPress is vulnerable to Path Traversal in all versions... Moderate Unreviewed

CVE-2025-8559 was published Sep 30, 2025

Liferay Portal vulnerable to path traversal and denial-of-service in the ComboServlet Moderate

CVE-2025-43813 was published for com.liferay.portal:com.liferay.portal.impl (Maven) Sep 30, 2025

A vulnerability was determined in Bjskzy Zhiyou ERP up to 11.0. Affected is the function... Moderate Unreviewed

CVE-2025-11139 was published Sep 29, 2025

A security flaw has been discovered in Campcodes Farm Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-11079 was published Sep 27, 2025

A vulnerability was found in Dibo Data Decision Making System up to 2.7.0. The affected element... Moderate Unreviewed

CVE-2025-11034 was published Sep 26, 2025

A flaw has been found in DataTables up to 1.10.13. The affected element is an unknown function of... Moderate Unreviewed

CVE-2025-11031 was published Sep 26, 2025

Previous 12…291 Next

Previous 1 2 3 4 5 … 290 291 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

7,263 advisories