Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,645 advisories

Loading
A vulnerability classified as critical has been found in SourceCodester Best Employee Management... Moderate Unreviewed
CVE-2025-1593 was published Feb 23, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-1598 was published Feb 24, 2025
A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-1590 was published Feb 23, 2025
ShopXO 6.4.0 is vulnerable to File Upload in ThemeDataService.php. Critical Unreviewed
CVE-2025-26325 was published Feb 28, 2025
Improper access control in the HTTP server in YI Car Dashcam v3.88 allows unrestricted file... Critical Unreviewed
CVE-2024-56897 was published Feb 24, 2025
The WooCommerce Ultimate Gift Card plugin for WordPress is vulnerable to arbitrary file uploads... Critical Unreviewed
CVE-2024-8425 was published Feb 28, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Salon Booking System Salon... Critical Unreviewed
CVE-2024-30510 was published Mar 29, 2024
Unrestricted Upload of File with Dangerous Type vulnerability in CubeWP CubeWP – All-in-One... Critical Unreviewed
CVE-2024-30500 was published Mar 29, 2024
The Hash Form – Drag & Drop Form Builder plugin for WordPress is vulnerable to arbitrary file... Critical Unreviewed
CVE-2024-5084 was published May 23, 2024
A vulnerability was found in code-projects Content Management System 1.0. It has been classified... Moderate Unreviewed
CVE-2025-0346 was published Jan 9, 2025
The EnvíaloSimple: Email Marketing y Newsletters plugin for WordPress is vulnerable to Cross-Site... High Unreviewed
CVE-2024-2125 was published Apr 9, 2024
General Bytes Crypto Application Server (CAS) 20230120, as distributed with General Bytes BATM... Critical Unreviewed
CVE-2023-28725 was published Mar 22, 2023
A vulnerability classified as critical was found in needyamin image_gallery 1.0. This... Moderate Unreviewed
CVE-2025-0722 was published Jan 27, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Tourfic.This issue affects... Critical Unreviewed
CVE-2024-29135 was published Mar 19, 2024
The Everest Forms – Contact Forms, Quiz, Survey, Newsletter & Payment Form Builder for WordPress... Critical Unreviewed
CVE-2025-1128 was published Feb 25, 2025
A vulnerability was found in needyamin Library Card System 1.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-1355 was published Feb 16, 2025
The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-13869 was published Feb 22, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Chaty Pro allows Upload... Critical Unreviewed
CVE-2025-26776 was published Feb 22, 2025
A vulnerability, which was classified as critical, was found in Campcodes Legal Case Management... Moderate Unreviewed
CVE-2024-4681 was published May 14, 2024
Authenticated Arbitrary Code Execution vulnerability in Soflyy Import any XML or CSV File to... High Unreviewed
CVE-2022-36386 was published Sep 22, 2022
The Zarinpal Paid Download WordPress plugin through 2.3 does not properly validate uploaded files... Moderate Unreviewed
CVE-2024-13544 was published Feb 11, 2025
A Remote Code Execution (RCE) vulnerabilty exists in LimeSurvey 5.2.4 via the upload and install... High Unreviewed
CVE-2021-44967 was published Feb 25, 2022
An arbitrary file upload vulnerability in the component /userPicture of Timo v2.0.3 allows... High Unreviewed
CVE-2024-57407 was published Feb 10, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in kodeshpa Simplified allows Using... Critical Unreviewed
CVE-2025-22654 was published Feb 18, 2025
An unrestricted file upload vulnerability in the administrative portal branding component of... High Unreviewed
CVE-2023-26830 was published Mar 31, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database