Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,350
Erlang
31
GitHub Actions
22
Go
2,119
Maven
5,000+
npm
3,778
NuGet
680
pip
3,459
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

6,457 advisories

Loading
WhoDB has a path traversal opening Sqlite3 database Critical
CVE-2025-24786 was published for github.com/clidey/whodb/core (Go) Feb 6, 2025
nnsee modelorona
hkdeman
The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is... Moderate Unreviewed
CVE-2025-0859 was published Feb 6, 2025
IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow... Moderate Unreviewed
CVE-2025-0799 was published Feb 6, 2025
Browsershot Path Traversal High
CVE-2025-1022 was published for spatie/browsershot (Composer) Feb 5, 2025
Browsershot Local File Inclusion Moderate
CVE-2025-1026 was published for spatie/browsershot (Composer) Feb 5, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or... Unknown Unreviewed
CVE-2024-48019 was published Feb 4, 2025
Vitest browser mode serves arbitrary files Moderate
CVE-2025-24963 was published for @vitest/browser (npm) Feb 4, 2025
sapphi-red
ChestnutCMS <=1.5.0 has a directory traversal vulnerability in contentcore.controller... High Unreviewed
CVE-2024-57451 was published Feb 3, 2025
Directory Traversal vulnerability in Zrlog backup-sql-file.jar v.3.0.31 allows a remote attacker... High Unreviewed
CVE-2024-57669 was published Feb 3, 2025
S3Proxy allows insecure path traversal in filesystem and filesystem-nio2 storage backends Moderate
CVE-2025-24961 was published for org.gaul:s3proxy (Maven) Feb 3, 2025
xbow-security
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-24569 was published Feb 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-24605 was published Feb 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-23819 was published Feb 3, 2025
A vulnerability classified as critical was found in CmsEasy 7.7.7.9. This vulnerability affects... Moderate Unreviewed
CVE-2025-0973 was published Feb 3, 2025
The Jupiter X Core plugin for WordPress is vulnerable to Directory Traversal in all versions up... Moderate Unreviewed
CVE-2025-0365 was published Feb 1, 2025
An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File... High Unreviewed
CVE-2024-53537 was published Jan 31, 2025
An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4... High Unreviewed
CVE-2024-53582 was published Jan 31, 2025
The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress... Critical Unreviewed
CVE-2025-0493 was published Jan 31, 2025
Sante PACS Server DCM File Parsing Directory Traversal Arbitrary File Write Vulnerability. This... Moderate Unreviewed
CVE-2025-0573 was published Jan 30, 2025
Sante PACS Server Web Portal DCM File Parsing Directory Traversal Arbitrary File Write... Moderate Unreviewed
CVE-2025-0572 was published Jan 30, 2025
The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions... High Unreviewed
CVE-2024-13671 was published Jan 30, 2025
The WP Image Uploader plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed
CVE-2024-13720 was published Jan 30, 2025
DevDojo Voyager vulnerable to path traversal High
CVE-2024-55415 was published for tcg/voyager (Composer) Jan 30, 2025
Deep Java Library path traversal issue Critical
CVE-2025-0851 was published for ai.djl:api (Maven) Jan 29, 2025
CRI-O Path Traversal vulnerability Moderate
CVE-2025-0750 was published for github.com/cri-o/cri-o (Go) Jan 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database