GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,859

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,207 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Unrestricted Upload... Critical Unreviewed

CVE-2025-61808 was published Dec 10, 2025

The Flex QR Code Generator plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-12673 was published Dec 6, 2025

Unauthenticated Arbitrary File Upload (upgrade_contents.php) in DB Electronica Telecomunicazioni... Critical Unreviewed

CVE-2025-66255 was published Nov 26, 2025

Unauthenticated Arbitrary File Upload (status_contents.php) in DB Electronica Telecomunicazioni S... Critical Unreviewed

CVE-2025-66250 was published Nov 26, 2025

Unauthenticated Arbitrary File Upload (patch_contents.php) in DB Electronica Telecomunicazioni S... Critical Unreviewed

CVE-2025-66256 was published Nov 26, 2025

The AI Feeds plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2025-13597 was published Nov 26, 2025

The CIBELES AI plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2025-13595 was published Nov 26, 2025

Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi... Critical Unreviewed

CVE-2023-7330 was published Nov 24, 2025

The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to... Critical Unreviewed

CVE-2025-11456 was published Nov 21, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Critical Unreviewed

CVE-2025-34328 was published Nov 19, 2025

AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... Critical Unreviewed

CVE-2025-34329 was published Nov 19, 2025

The Mozart FM Transmitter web management interface on version WEBMOZZI-00287, contains an... Critical Unreviewed

CVE-2025-63228 was published Nov 18, 2025

DzzOffice v2.3.7 and before is vulnerable to Arbitrary File Upload in /dzz/system/ueditor/php... Critical Unreviewed

CVE-2025-63695 was published Nov 18, 2025

An arbitrary file upload vulnerability in the /php/UploadHandler.php component of RichFilemanager... Critical Unreviewed

CVE-2025-63994 was published Nov 18, 2025

The WP移行専用プラグイン for CPI plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed

CVE-2025-11170 was published Nov 11, 2025

Employee Records System version 1.0 contains an unrestricted file upload vulnerability that... Critical Unreviewed

CVE-2021-4462 was published Nov 11, 2025

Monsta FTP versions 2.11 and earlier contain a vulnerability that allows unauthenticated... Critical Unreviewed

CVE-2025-34299 was published Nov 7, 2025

The Gravity Forms plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2025-12352 was published Nov 7, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in KingAddons.com King Addons for... Critical Unreviewed

CVE-2025-6327 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Rometheme RTMKit rometheme-for... Critical Unreviewed

CVE-2025-62065 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in hogash Kallyas kallyas.This... Critical Unreviewed

CVE-2025-62016 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Case-Themes Case Addons case... Critical Unreviewed

CVE-2025-62047 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Addify Custom User Registration... Critical Unreviewed

CVE-2025-60207 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Plugify Helpdesk Support Ticket... Critical Unreviewed

CVE-2025-60235 was published Nov 6, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Helmut Wandl Advanced Settings... Critical Unreviewed

CVE-2025-58996 was published Nov 6, 2025

Previous1…49 Next

Previous 1 2 3 4 5 … 48 49 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,207 advisories