GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,155
Composer 4,335
Erlang 31
GitHub Actions 22
Go 2,096
Maven 5,269
npm 3,762
NuGet 678
pip 3,448
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,676

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,330 advisories

Filter by severity

Sort by

Least recently updated

The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient... Critical Unreviewed

CVE-2025-0357 was published Jan 25, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Themefic Tourfic allows Upload a... Critical Unreviewed

CVE-2025-24650 was published Jan 24, 2025

IBM Planning Analytics 2.0 and 2.1 could be vulnerable to malicious file upload by not validating... High Unreviewed

CVE-2024-25034 was published Jan 24, 2025

IBM Planning Analytics 2.0 and 2.1 could be vulnerable to malicious file upload by not validating... High Unreviewed

CVE-2024-40693 was published Jan 24, 2025

An unauthenticated remote attacker can upload a arbitrary script file due to improper input... Moderate Unreviewed

CVE-2024-25994 was published Mar 12, 2024

An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file... Critical Unreviewed

CVE-2024-48760 was published Jan 15, 2025

Dell RecoverPoint for Virtual Machines 5.3.x contains an OS Command injection vulnerability. An... High Unreviewed

CVE-2024-22426 was published Feb 16, 2024

Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to... Critical Unreviewed

CVE-2017-11357 was published May 14, 2022

Unrestricted Upload of File with Dangerous Type vulnerability in NgocCode WP Load Gallery allows... Critical Unreviewed

CVE-2025-23942 was published Jan 22, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in Innovative Solutions user files... Critical Unreviewed

CVE-2025-23953 was published Jan 22, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Smallerik File Browser... Critical Unreviewed

CVE-2025-23918 was published Jan 22, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Multi Uploader for... Critical Unreviewed

CVE-2025-23921 was published Jan 22, 2025

The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to arbitrary file uploads due... Critical Unreviewed

CVE-2024-13091 was published Jan 22, 2025

Remote Code Execution has been discovered in OpenText™ iManager 3.2.6.0200. The vulnerability can... High Unreviewed

CVE-2024-3483 was published May 15, 2024

File Upload vulnerability in unauthenticated session found in OpenText™ iManager 3.2.6.0200. The... Moderate Unreviewed

CVE-2024-3488 was published May 15, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in UkrSolution Barcode Scanner with... Critical Unreviewed

CVE-2025-22723 was published Jan 21, 2025

Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Fancy Product Designer.... Critical Unreviewed

CVE-2024-51919 was published Jan 21, 2025

The Advanced File Manager plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-13333 was published Jan 17, 2025

BibORB 1.3.2, and possibly earlier versions, does not properly enforce a restriction for... Moderate Unreviewed

CVE-2005-0254 was published May 1, 2022

F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an... High Unreviewed

CVE-2024-25832 was published Feb 29, 2024

Unrestricted file upload vulnerability in the PMB platform, affecting versions 4.0.10 and above.... Critical Unreviewed

CVE-2025-0471 was published Jan 16, 2025

The Brizy – Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed

CVE-2024-1311 was published Mar 13, 2024

The Admin and Customer Messages After Order for WooCommerce: OrderConvo plugin for WordPress is... Moderate Unreviewed

CVE-2024-13355 was published Jan 16, 2025

The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to arbitrary file... High Unreviewed

CVE-2024-4397 was published May 14, 2024

Unrestricted Upload of File with Dangerous Type vulnerability in Web Ready Now WR Price List... Critical Unreviewed

CVE-2025-22782 was published Jan 15, 2025

Previous 1 2 3 4 5 … 93 94 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,330 advisories