GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,296
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,116
Rust
1,492
Swift
61
Unreviewed advisories
All unreviewed
5,000+
8,932 advisories
Filter by severity
Sustainable Irrigation Platform (SIP) through version 5.2.16 contains a path traversal...
High
Unreviewed
CVE-2026-60114
was published
Jul 14, 2026
A path traversal vulnerability in Tenable Agent 11.2.0 and 11.1.3 and lower allows a privileged...
Critical
Unreviewed
CVE-2026-15265
was published
Jul 14, 2026
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Unknown
Unreviewed
CVE-2026-49488
was published
Jul 14, 2026
In Eclipse BaSyx Java Server SDK versions 2.0.0-milestone-05 to 2.0.0-milestone-12, deployments...
Critical
Unreviewed
CVE-2026-57898
was published
Jul 14, 2026
A vulnerability in keras-team/keras version 3.12.0 allows an attacker to craft a malicious tar...
Low
Unreviewed
CVE-2026-12482
was published
Jul 14, 2026
A vulnerability was determined in nextlevelbuilder GoClaw 3.13.3-beta.3. This affects the...
Low
Unreviewed
CVE-2026-15626
was published
Jul 14, 2026
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system...
High
Unreviewed
CVE-2026-57856
was published
Jul 14, 2026
OpenBMB XAgent v1.0.0 and before is vulnerable to path traversal in the file() function in XAgent...
High
Unreviewed
CVE-2026-26396
was published
Jul 13, 2026
Laravel-Mediable before 7.0.0 contains a path traversal vulnerability in the File::sanitizePath()...
High
Unreviewed
CVE-2026-49970
was published
Jul 13, 2026
Rejetto HFS 3.0.0 through 3.2.0 allows path traversal through the lang query parameter,...
Moderate
Unreviewed
CVE-2026-61505
was published
Jul 13, 2026
NukeViet: Path Traversal to Arbitrary File Deletion in Edit Comment Function
High
CVE-2026-54065
was published
for
nukeviet/nukeviet
(Composer)
Jul 13, 2026
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2026-57815
was published
Jul 13, 2026
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2026-57709
was published
Jul 13, 2026
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Critical
Unreviewed
CVE-2026-57401
was published
Jul 13, 2026
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2026-57389
was published
Jul 13, 2026
A flaw has been found in augmnt augments-mcp-server 7.1.0. This issue affects the function...
Low
Unreviewed
CVE-2026-15526
was published
Jul 13, 2026
A vulnerability has been found in better-auth better-icons up to 1.0.5. This vulnerability...
Low
Unreviewed
CVE-2026-15527
was published
Jul 13, 2026
A security flaw has been discovered in tugcantopaloglu godot-mcp 2.0.0. Affected by this...
Low
Unreviewed
CVE-2026-15522
was published
Jul 13, 2026
A vulnerability was identified in makafeli n8n-workflow-builder up to 0.11.0. Affected is an...
Low
Unreviewed
CVE-2026-15521
was published
Jul 13, 2026
A security vulnerability has been detected in alioshr memory-bank-mcp up to 0.2.1/3.1. This...
Low
Unreviewed
CVE-2026-15524
was published
Jul 13, 2026
Crawl4AI before 0.8.7 contains an arbitrary file write vulnerability in the Docker API server's ...
High
Unreviewed
CVE-2026-56260
was published
Jul 12, 2026
PraisonAI before 4.6.78 fails to validate file path references in custom command templates,...
Moderate
Unreviewed
CVE-2026-60088
was published
Jul 11, 2026
PraisonAI before 4.6.78 contains arbitrary file write and command execution vulnerabilities in...
Critical
Unreviewed
CVE-2026-61445
was published
Jul 11, 2026
The W3 Total Cache plugin for WordPress is vulnerable to Directory Traversal in all versions up...
High
Unreviewed
CVE-2026-9282
was published
Jul 11, 2026
The UnderConstructionPage PRO plugin for WordPress is vulnerable to Arbitrary File Read in all...
Moderate
Unreviewed
CVE-2026-11426
was published
Jul 11, 2026
ProTip!
Advisories are also available from the
GraphQL API