Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,651
Erlang
34
GitHub Actions
26
Go
2,252
Maven
5,000+
npm
3,904
NuGet
702
pip
3,676
Pub
12
RubyGems
915
Rust
943
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,718 advisories

Loading
The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-3616 was published Apr 22, 2025
MCMS allows arbitrary file uploads in the ueditor component Critical
CVE-2025-29287 was published for net.mingsoft:ms-mcms (Maven) Apr 21, 2025
The Wordpress Plugin Smart Product Review plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2021-4455 was published Apr 19, 2025
The AIHub theme for WordPress is vulnerable to arbitrary file uploads due to missing file type... Critical Unreviewed
CVE-2025-1093 was published Apr 19, 2025
youtube-dl vulnerable to file system modification and RCE through improper file-extension sanitization High
GHSA-22fp-mf44-f2mq was published for youtube-dl (pip) Apr 18, 2025
pukkandan JarLob
Grub4K dirkf
Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw allows Using... Critical Unreviewed
CVE-2025-39436 was published Apr 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in RomanCode MapSVG Lite allows... Critical Unreviewed
CVE-2025-32682 was published Apr 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in JoomSky JS Job Manager allows... Critical Unreviewed
CVE-2025-32660 was published Apr 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in solacewp Solace Extra allows... Critical Unreviewed
CVE-2025-32652 was published Apr 17, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in rockgod100 Theme File Duplicator... Critical Unreviewed
CVE-2025-27282 was published Apr 17, 2025
An unrestricted upload of file with dangerous type vulnerability in the course management... Moderate Unreviewed
CVE-2025-31339 was published Apr 17, 2025
Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload... Critical Unreviewed
CVE-2024-40071 was published Apr 16, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Ben Ritner - Kadence WP Kadence... Critical Unreviewed
CVE-2025-39557 was published Apr 16, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Mathieu Chartier WP-Advanced... Moderate Unreviewed
CVE-2025-39538 was published Apr 16, 2025
The Ready_ application's Profile section allows users to upload files of any type and extension... Critical Unreviewed
CVE-2025-1980 was published Apr 16, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in EPC AI Hub allows Upload a Web... Critical Unreviewed
CVE-2025-26927 was published Apr 16, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in SoftClever Limited Sync Posts... Critical Unreviewed
CVE-2025-32579 was published Apr 11, 2025
A Remote Code Execution (RCE) vulnerability exists in Code Astro Internet Banking System 2.0.0... High Unreviewed
CVE-2025-29017 was published Apr 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Brian Batt - elearningfreak.com... Critical Unreviewed
CVE-2025-32202 was published Apr 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Ability, Inc Accessibility Suite... Moderate Unreviewed
CVE-2025-32215 was published Apr 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in LABCAT Processing Projects... Critical Unreviewed
CVE-2025-32206 was published Apr 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Nirmal Kumar Ram WP Remote... Critical Unreviewed
CVE-2025-32140 was published Apr 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Bogdan Bendziukov Squeeze allows... Critical Unreviewed
CVE-2025-31002 was published Apr 9, 2025
An insecure permissions vulnerability in verydows v2.0 allows a remote attacker to execute... High Unreviewed
CVE-2025-29394 was published Apr 9, 2025
Arbitrary File Write vulnerabilities exist in the web-based management interface of both the AOS... High Unreviewed
CVE-2025-27082 was published Apr 8, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database