GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,316
Maven
5,000+
npm
5,000+
NuGet
1,030
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,493
Swift
61
Unreviewed advisories
All unreviewed
5,000+
1,246 advisories
Filter by severity
Contributor Local File Inclusion in Shopify <= 1.0.0 versions.
High
Unreviewed
CVE-2026-57748
was published
Jul 2, 2026
Unauthenticated Local File Inclusion in Audrey <= 1.5 versions.
High
Unreviewed
CVE-2026-42382
was published
Jul 2, 2026
Unauthenticated Local File Inclusion in Pearl - Corporate Business <= 3.4.10 versions.
High
Unreviewed
CVE-2026-27412
was published
Jul 2, 2026
Unauthenticated Local File Inclusion in Lighthouse <= 1.2.12 versions.
High
Unreviewed
CVE-2025-58902
was published
Jul 2, 2026
Subscriber Local File Inclusion in Tourmaster <= 5.4.5 versions.
High
Unreviewed
CVE-2025-69133
was published
Jul 2, 2026
The Youtube Showcase plugin for WordPress is vulnerable to Arbitrary Function Call in versions up...
High
Unreviewed
CVE-2026-12923
was published
Jul 1, 2026
Contributor Local File Inclusion in Panorama Viewer – 360 Degree Image + Video Viewer <= 1.6.1...
High
Unreviewed
CVE-2026-57647
was published
Jun 26, 2026
Contributor Local File Inclusion in Splash - Sport Club WordPress Theme for Basketball, Football,...
High
Unreviewed
CVE-2025-68063
was published
Jun 26, 2026
Contributor Local File Inclusion in Goya Core < 1.0.9.4 versions.
High
Unreviewed
CVE-2025-68064
was published
Jun 26, 2026
Unauthenticated Local File Inclusion in MDTF <= 1.3.8 versions.
High
Unreviewed
CVE-2026-54845
was published
Jun 25, 2026
Joomla! Component Easy Shop 1.2.3 contains a local file inclusion vulnerability that allows...
Moderate
Unreviewed
CVE-2019-25760
was published
Jun 19, 2026
The BetterDocs Pro plugin for WordPress is vulnerable to Local File Inclusion in versions up to,...
Critical
Unreviewed
CVE-2026-7515
was published
Jun 19, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
High
Unreviewed
CVE-2026-54814
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Line Agency <= 1.3.1 versions.
High
Unreviewed
CVE-2025-69175
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Eventicity <= 1.5 versions.
High
Unreviewed
CVE-2025-69170
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Dazzle <= 1.0.0 versions.
High
Unreviewed
CVE-2025-69120
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in LuxMed | Medicine & Healthcare Doctor WordPress Theme <=...
High
Unreviewed
CVE-2025-69115
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Fortius <= 2.3.0 versions.
High
Unreviewed
CVE-2025-69126
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Snow Club <= 1.1 versions.
High
Unreviewed
CVE-2025-69123
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Preservation <= 1.10 versions.
High
Unreviewed
CVE-2025-69144
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Solene Core <= 2.3.2 versions.
High
Unreviewed
CVE-2026-39523
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Uppercase < 1.2.2 versions.
High
Unreviewed
CVE-2026-39559
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Gamic <= 1.15 versions.
High
Unreviewed
CVE-2025-69157
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Atomlab <= 2.4.5 versions.
High
Unreviewed
CVE-2026-39590
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Gunslinger <= 1.7 versions.
High
Unreviewed
CVE-2025-69166
was published
Jun 17, 2026
ProTip!
Advisories are also available from the
GraphQL API