GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,213
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,111
Maven 5,287
npm 3,767
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 888
Swift 37

Unreviewed advisories

All unreviewed 243,528

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

606 advisories

Filter by severity

Sort by

Least recently updated

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before... Critical Unreviewed

CVE-2021-33353 was published Mar 9, 2023

Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1... Critical Unreviewed

CVE-2023-22336 was published Mar 6, 2023

A vulnerability was found in Drag and Drop Multiple File Upload Contact Form 7 5.0.6.1. It has... Critical Unreviewed

CVE-2023-1112 was published Mar 1, 2023

Relative Path Traversal vulnerability in ForgeRock Access Management Java Policy Agent allows... Critical Unreviewed

CVE-2023-0511 was published Feb 28, 2023

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows... Critical Unreviewed

CVE-2023-0339 was published Feb 28, 2023

Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3. Critical Unreviewed

CVE-2023-0947 was published Feb 22, 2023

Sunlogin Sunflower Simplified (aka Sunflower Simple and Personal) 1.0.1.43315 is vulnerable to a... Critical Unreviewed

CVE-2022-48323 was published Feb 13, 2023

Relative Path Traversal vulnerability in YugaByte, Inc. Yugabyte Managed ... Critical Unreviewed

CVE-2023-0745 was published Feb 9, 2023

Directory Traversal vulnerability in AdminLTE 3.1.0 allows remote attackers to gain escalated... Critical Unreviewed

CVE-2021-36471 was published Feb 8, 2023

Directory Traversal vulnerability in Cloud Disk in ASUS RT-AC68U router firmware version before 3... Critical Unreviewed

CVE-2021-37317 was published Feb 3, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Critical Unreviewed

CVE-2022-0223 was published Jan 31, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Critical Unreviewed

CVE-2022-22731 was published Jan 31, 2023

There is a Path Traversal that leads to a Local File Inclusion in Pandora FMS v764. A function is... Critical Unreviewed

CVE-2022-43979 was published Jan 28, 2023

An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model... Critical Unreviewed

CVE-2020-18330 was published Jan 26, 2023

Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running... Critical Unreviewed

CVE-2020-18331 was published Jan 26, 2023

A vulnerability in the FTP service of Western Digital My Cloud OS 5 devices running firmware... Critical Unreviewed

CVE-2022-29844 was published Jan 26, 2023

The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated,... Critical Unreviewed

CVE-2022-31706 was published Jan 26, 2023

The Images Optimize and Upload CF7 WordPress plugin through 2.1.4 does not validate the file to... Critical Unreviewed

CVE-2022-4101 was published Jan 16, 2023

A vulnerability has been found in frontaccounting faplanet and classified as critical. This... Critical Unreviewed

CVE-2014-125080 was published Jan 16, 2023

nhttpd in Nostromo before 2.1 is vulnerable to a path traversal that may allow an attacker to... Critical Unreviewed

CVE-2022-48253 was published Jan 11, 2023

A vulnerability has been found in fabarea media_upload and classified as critical. This... Critical Unreviewed

CVE-2016-15017 was published Jan 10, 2023

A vulnerability has been identified in Automation License Manager V5 (All versions), Automation... Critical Unreviewed

CVE-2022-43514 was published Jan 10, 2023

A vulnerability classified as critical was found in hoffie larasync. This vulnerability affects... Critical Unreviewed

CVE-2015-10024 was published Jan 7, 2023

A vulnerability was found in stakira OpenUtau. It has been classified as critical. This affects... Critical Unreviewed

CVE-2022-4880 was published Jan 7, 2023

A vulnerability was found in soerennb eXtplorer up to 2.1.12 and classified as critical. Affected... Critical Unreviewed

CVE-2019-25097 was published Jan 5, 2023

Previous 1 2 … 7 8 9 10 11 … 24 25 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

606 advisories