Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,950
Erlang
39
GitHub Actions
38
Go
2,603
Maven
5,000+
npm
4,250
NuGet
755
pip
4,013
Pub
12
RubyGems
953
Rust
1,048
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,108 advisories

Loading
PerfreeBlog v4.0.11 has a File Upload vulnerability in the installTheme function High Unreviewed
CVE-2025-60731 was published Oct 24, 2025
PerfreeBlog v4.0.11 has a File Upload vulnerability in the installPlugin function High Unreviewed
CVE-2025-60735 was published Oct 24, 2025
The AIO Forms – Craft Complex Forms Easily plugin for WordPress is vulnerable to arbitrary file... High Unreviewed
CVE-2025-11889 was published Oct 24, 2025
The WooCommerce Designer Pro plugin for WordPress, used by the Pricom - Printing Company & Design... Critical Unreviewed
CVE-2025-6440 was published Oct 24, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in Gesundheit Bewegt GmbH Zippy... Critical Unreviewed
CVE-2025-52758 was published Oct 22, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in 7oroof Medcity medcity allows... Critical Unreviewed
CVE-2025-58963 was published Oct 22, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in CMSSuperHeroes Wastia wastia... Moderate Unreviewed
CVE-2025-49060 was published Oct 22, 2025
Unrestricted Upload of File with Dangerous Type vulnerability in CMSSuperHeroes Clanora clanora... Moderate Unreviewed
CVE-2025-48106 was published Oct 22, 2025
QDocs Smart School Management System 7.1 allows authenticated users with roles such as ... High Unreviewed
CVE-2025-60500 was published Oct 21, 2025
daicuocms V1.3.13 contains an arbitrary file upload vulnerability in the image upload feature. Moderate Unreviewed
CVE-2025-61181 was published Oct 21, 2025
An unrestricted upload of file with dangerous type vulnerability in the upload file function of... Critical Unreviewed
CVE-2025-31342 was published Oct 20, 2025
Document Management System developed by Excellent Infotek has an Arbitrary File Upload... Critical Unreviewed
CVE-2025-11948 was published Oct 20, 2025
The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to... Critical Unreviewed
CVE-2025-11391 was published Oct 18, 2025
An arbitrary file upload vulnerability in SigningHub v8.6.8 allows attackers to execute arbitrary... Critical Unreviewed
CVE-2025-56218 was published Oct 17, 2025
Some versions of Hikvision's iSecure Center Product have an improper file upload control... Critical Unreviewed
CVE-2023-28814 was published Oct 17, 2025
The DocoDoco Store Locator plugin for WordPress is vulnerable to arbitrary file uploads due to... High Unreviewed
CVE-2025-10754 was published Oct 15, 2025
The Demo Import Kit plugin for WordPress is vulnerable to arbitrary file uploads due to missing... High Unreviewed
CVE-2025-10051 was published Oct 15, 2025
The Flex QR Code Generator plugin for WordPress is vulnerable to arbitrary file uploads due to... Critical Unreviewed
CVE-2025-10041 was published Oct 15, 2025
SmartBI V8, V9, and V10 contain an unrestricted file upload vulnerability via the RMIServlet... Critical Unreviewed
CVE-2023-7305 was published Oct 15, 2025
An arbitrary file write vulnerability exists in the web-based management interface of both the... High Unreviewed
CVE-2025-37132 was published Oct 14, 2025
Due to missing verification of file type or content, SAP Supplier Relationship Management allows... Critical Unreviewed
CVE-2025-42910 was published Oct 14, 2025
Enterprise Cloud Database developed by Ragic has an Arbitrary File Upload vulnerability, allowing... High Unreviewed
CVE-2025-11675 was published Oct 13, 2025
A vulnerability has been found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11660 was published Oct 13, 2025
A vulnerability was detected in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11658 was published Oct 13, 2025
A flaw has been found in ProjectsAndPrograms School Management System up to... Moderate Unreviewed
CVE-2025-11659 was published Oct 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database