Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,476
Erlang
33
GitHub Actions
24
Go
2,203
Maven
5,000+
npm
3,852
NuGet
696
pip
3,637
Pub
12
RubyGems
911
Rust
913
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

445 advisories

Loading
There is a risk of unauthorized file uploads in GT-SoftControl and potential file overwrites due... Moderate Unreviewed
CVE-2025-2819 was published Mar 26, 2025
A vulnerability classified as critical has been found in PHPGurukul eLearning System 1.0.... Moderate Unreviewed
CVE-2025-2687 was published Mar 24, 2025
In version v12 of parisneo/lollms-webui, the 'Send file to AL' function allows uploading files... Moderate Unreviewed
CVE-2024-9920 was published Mar 20, 2025
An arbitrary file upload vulnerability in the component /admin/template.php of emlog pro 2.5.0... Moderate Unreviewed
CVE-2025-29405 was published Mar 19, 2025
IBM Security ReaQta 3.12 allows a privileged user to upload or transfer files of dangerous types... Moderate Unreviewed
CVE-2024-45644 was published Mar 19, 2025
A vulnerability was found in LoveCards LoveCardsV2 up to 2.3.2 and classified as critical. This... Moderate Unreviewed
CVE-2025-2219 was published Mar 12, 2025
A vulnerability, which was classified as critical, has been found in zzskzy Warehouse Refinement... Moderate Unreviewed
CVE-2025-2216 was published Mar 12, 2025
A vulnerability has been found in shishuocms 1.1 and classified as critical. This vulnerability... Moderate Unreviewed
CVE-2025-1890 was published Mar 4, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-1598 was published Feb 24, 2025
A vulnerability was found in SourceCodester E-Learning System 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-1590 was published Feb 23, 2025
A vulnerability classified as critical has been found in SourceCodester Best Employee Management... Moderate Unreviewed
CVE-2025-1593 was published Feb 23, 2025
A vulnerability was found in needyamin Library Card System 1.0. It has been declared as critical.... Moderate Unreviewed
CVE-2025-1355 was published Feb 16, 2025
A CWE-434 "Unrestricted Upload of File with Dangerous Type" in the template file uploads in Q... Moderate Unreviewed
CVE-2025-26350 was published Feb 12, 2025
The Zarinpal Paid Download WordPress plugin through 2.3 does not properly validate uploaded files... Moderate Unreviewed
CVE-2024-13544 was published Feb 11, 2025
A vulnerability has been found in SourceCodester Food Menu Manager 1.0 and classified as critical... Moderate Unreviewed
CVE-2025-1166 was published Feb 11, 2025
A vulnerability, which was classified as critical, was found in Lumsoft ERP 8. Affected is the... Moderate Unreviewed
CVE-2025-1165 was published Feb 11, 2025
A vulnerability classified as critical was found in needyamin image_gallery 1.0. This... Moderate Unreviewed
CVE-2025-0722 was published Jan 27, 2025
A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0... Moderate Unreviewed
CVE-2025-0582 was published Jan 20, 2025
An issue in themesebrand Chatvia v.5.3.2 allows a remote attacker to execute arbitrary code via... Moderate Unreviewed
CVE-2024-40513 was published Jan 17, 2025
The Admin and Customer Messages After Order for WooCommerce: OrderConvo plugin for WordPress is... Moderate Unreviewed
CVE-2024-13355 was published Jan 16, 2025
An arbitrary file upload vulnerability in the UI login page logo upload function of Process Maker... Moderate Unreviewed
CVE-2024-41454 was published Jan 16, 2025
SAP NetWeaver AS JAVA (User Admin Application) is vulnerable to stored cross site scripting... Moderate Unreviewed
CVE-2025-0057 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... Moderate Unreviewed
CVE-2023-42248 was published Jan 14, 2025
A vulnerability was found in code-projects Content Management System 1.0. It has been classified... Moderate Unreviewed
CVE-2025-0346 was published Jan 9, 2025
A vulnerability, which was classified as critical, has been found in CampCodes Computer... Moderate Unreviewed
CVE-2025-0341 was published Jan 9, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database