GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,128
Composer 4,331
Erlang 31
GitHub Actions 21
Go 2,093
Maven 5,261
npm 3,756
NuGet 678
pip 3,443
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,193

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

78 advisories

Filter by severity

Sort by

Least recently updated

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-23948 was published Jan 22, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-23949 was published Jan 22, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-23938 was published Jan 22, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-22311 was published Jan 21, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-23915 was published Jan 16, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-22508 was published Jan 9, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-53800 was published Jan 7, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2025-22364 was published Jan 7, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Moderate Unreviewed

CVE-2025-22305 was published Jan 7, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-56282 was published Jan 7, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-56281 was published Jan 7, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Critical Unreviewed

CVE-2024-49649 was published Jan 7, 2025

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Moderate Unreviewed

CVE-2024-56216 was published Dec 31, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-56230 was published Dec 31, 2024

The WP Travel Engine – Elementor Widgets | Create Travel Booking Website Using WordPress and... High Unreviewed

CVE-2024-12272 was published Dec 25, 2024

The Store Locator for WordPress with Google Maps – LotsOfLocales plugin for WordPress is... Critical Unreviewed

CVE-2024-12571 was published Dec 20, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-54270 was published Dec 18, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-54376 was published Dec 16, 2024

The Product Carousel Slider & Grid Ultimate for WooCommerce plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-12040 was published Dec 12, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... Moderate Unreviewed

CVE-2024-52385 was published Dec 9, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-54225 was published Dec 9, 2024

The WP Umbrella: Update Backup Restore & Monitoring plugin for WordPress is vulnerable to Local... Critical Unreviewed

CVE-2024-12209 was published Dec 8, 2024

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File... High Unreviewed

CVE-2024-53824 was published Dec 6, 2024

The Soledad theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and... High Unreviewed

CVE-2024-11289 was published Dec 6, 2024

Local File Inclusion vulnerabilities allow access to sensitive system information. Affected... High Unreviewed

CVE-2024-51541 was published Dec 5, 2024

Previous 1 2 3 4 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

78 advisories