GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,296
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
1,246 advisories
Filter by severity
Unauthenticated Local File Inclusion in Raider Spirit <= 1.1.2 versions.
High
Unreviewed
CVE-2025-69109
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Iona <= 1.0.8 versions.
High
Unreviewed
CVE-2025-69116
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Dom <= 1.24 versions.
High
Unreviewed
CVE-2025-69146
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in MaxiNet <= 1.2.10 versions.
High
Unreviewed
CVE-2025-69114
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Planty <= 1.14.0 versions.
High
Unreviewed
CVE-2025-69112
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in AirSupply <= 2.0.0 versions.
High
Unreviewed
CVE-2025-69110
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in CopyPress <= 1.4.5 versions.
High
Unreviewed
CVE-2025-69118
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Ingenioso <= 1.14.0 versions.
High
Unreviewed
CVE-2025-69117
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Modernee <= 1.6.0 versions.
High
Unreviewed
CVE-2025-69105
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Learnify <= 1.15.0 versions.
High
Unreviewed
CVE-2025-60085
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in HomeRoofer <= 2.11.0 versions.
High
Unreviewed
CVE-2025-58954
was published
Jun 17, 2026
Unauthenticated Arbitrary File Download in Premium Age Verification / Restriction for WordPress <...
High
Unreviewed
CVE-2025-49403
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Joly <= 1.22.0 versions.
High
Unreviewed
CVE-2025-58953
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Neuronet < 1.14.0 versions.
High
Unreviewed
CVE-2025-58952
was published
Jun 17, 2026
Unauthenticated Local File Inclusion in Geya <= 1.15 versions.
High
Unreviewed
CVE-2025-58924
was published
Jun 17, 2026
Discuz! X5.0 releases 20260320 through 20260610 contain a local file inclusion vulnerability that...
High
Unreviewed
CVE-2026-49954
was published
Jun 15, 2026
WordPress Brandfolder plugin version 3.0 and earlier contains a local file inclusion...
Moderate
Unreviewed
CVE-2016-20080
was published
Jun 15, 2026
WordPress Plugin Photocart Link 1.6 contains a local file inclusion vulnerability that allows...
Moderate
Unreviewed
CVE-2016-20077
was published
Jun 15, 2026
WordPress Dharma Booking 2.28.3 and earlier contains a local file inclusion vulnerability that...
Moderate
Unreviewed
CVE-2016-20079
was published
Jun 15, 2026
WordPress IMDb Profile Widget 1.0.8 contains a local file inclusion vulnerability that allows...
Moderate
Unreviewed
CVE-2016-20078
was published
Jun 15, 2026
WordPress Plugin Abtest contains a local file inclusion vulnerability that allows unauthenticated...
Moderate
Unreviewed
CVE-2016-20082
was published
Jun 15, 2026
WP Vault 0.8.6.6 contains a local file inclusion vulnerability that allows unauthenticated...
Moderate
Unreviewed
CVE-2016-20064
was published
Jun 9, 2026
The Recover Exit For WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in...
High
Unreviewed
CVE-2026-9662
was published
Jun 9, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
High
Unreviewed
CVE-2026-39552
was published
Jun 2, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
High
Unreviewed
CVE-2026-39553
was published
Jun 2, 2026
ProTip!
Advisories are also available from the
GraphQL API