Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,318
Maven
5,000+
npm
3,950
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
965
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,806 advisories

Loading
An arbitrary file upload vulnerability in the component /server/executeExec of JEHC-BPM v2.0.1... Critical Unreviewed
CVE-2025-45854 was published Jun 3, 2025
An arbitrary file upload vulnerability in the component /upload/GoodsCategory/image of erupt v1... Moderate Unreviewed
CVE-2025-45855 was published Jun 3, 2025
The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin... Moderate Unreviewed
CVE-2025-1725 was published Jun 3, 2025
An arbitrary file upload vulnerability exists in multiple WSO2 products due to improper... Moderate Unreviewed
CVE-2024-7074 was published Jun 2, 2025
Gradio Allows Unauthorized File Copy via Path Manipulation Moderate
CVE-2025-48889 was published for gradio (pip) May 29, 2025
jjjutla nkoorty
HuoCMS V3.5.1 has a File Upload Vulnerability. An attacker can exploit this flaw to bypass... Moderate Unreviewed
CVE-2025-46080 was published May 29, 2025
HuoCMS V3.5.1 and before is vulnerable to file upload, which allows attackers to take control of... Moderate Unreviewed
CVE-2025-46078 was published May 29, 2025
Sourcecodester Web-based Pharmacy Product Management System v.1.0 has a file upload vulnerability... High Unreviewed
CVE-2025-45997 was published May 28, 2025
The MasterStudy LMS Pro plugin for WordPress is vulnerable to arbitrary file uploads due to a... High Unreviewed
CVE-2025-4800 was published May 28, 2025
A vulnerability classified as critical has been found in Realce Tecnologia Queue Ticket Kiosk up... Moderate Unreviewed
CVE-2025-5178 was published May 26, 2025
A vulnerability, which was classified as critical, has been found in llisoft MTA Maita Training... Moderate Unreviewed
CVE-2025-5171 was published May 26, 2025
A vulnerability, which was classified as critical, has been found in H3C SecCenter SMP-E1114P02... Moderate Unreviewed
CVE-2025-5162 was published May 26, 2025
A vulnerability was found in Tmall Demo up to 20250505. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-5131 was published May 24, 2025
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2025-4336 was published May 24, 2025
The eMagicOne Store Manager for WooCommerce plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2025-5058 was published May 24, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in ELEXtensions ELEX WordPress... Critical Unreviewed
CVE-2025-47658 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in mojoomla Hospital Management... Critical Unreviewed
CVE-2025-47663 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in StoreKeeper B.V. StoreKeeper for... Critical Unreviewed
CVE-2025-47687 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in STAGGS STAGGS allows Upload a... Critical Unreviewed
CVE-2025-47637 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in printcart Printcart Web to Print... Critical Unreviewed
CVE-2025-47641 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Ajar Productions Ajar in5 Embed... Critical Unreviewed
CVE-2025-47642 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in wordwebsoftware Crossword... Critical Unreviewed
CVE-2025-46490 was published May 23, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in joy2012bd JP Students Result... Critical Unreviewed
CVE-2025-31916 was published May 23, 2025
File upload vulnerabilities are present in ASPECT if session administrator credentials become... Moderate Unreviewed
CVE-2025-30173 was published May 22, 2025
File upload and execute vulnerabilities in ASPECT allow PHP script injection if session... Moderate Unreviewed
CVE-2025-30169 was published May 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database