GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,302 advisories

Filter by severity

Sort by

Least recently updated

This affects the package sprinfall/webcc before 0.3.0. It is possible to traverse directories to... High Unreviewed

CVE-2022-25298 was published Feb 19, 2022

An incorrect access control issue in the component FileManager of Ovidentia CMS 6.0 allows... High Unreviewed

CVE-2022-22914 was published Feb 18, 2022

Forms generated by JQueryForm.com before 2022-02-05 allow remote attackers to obtain the URI to... High Unreviewed

CVE-2022-24983 was published Feb 17, 2022

kkFileview v4.0.0 has arbitrary file read through a directory traversal vulnerability which may... High Unreviewed

CVE-2021-43734 was published Feb 16, 2022

A Directory Traversal vulnerability exists in Solari di Udine TermTalk Server (TTServer) 3.24.0.2... High Unreviewed

CVE-2021-35380 was published Feb 16, 2022

Cuppa CMS v1.0 was discovered to contain an arbitrary file deletion vulnerability via the unlink(... High Unreviewed

CVE-2022-24647 was published Feb 12, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... High Unreviewed

CVE-2021-22748 was published Feb 12, 2022

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that... High Unreviewed

CVE-2021-22804 was published Feb 12, 2022

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web... High Unreviewed

CVE-2022-21371 was published Feb 10, 2022

Windows Print Spooler Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022... High Unreviewed

CVE-2022-21999 was published Feb 10, 2022

Directory travesal in /northstar/filemanager/download.jsp in Northstar Technologies Inc NorthStar... High Unreviewed

CVE-2021-29395 was published Feb 9, 2022

In iCMS <=8.0.0, a directory traversal vulnerability allows an attacker to read arbitrary files. High Unreviewed

CVE-2021-44977 was published Feb 9, 2022

Directory traversal vulnerability in TransmitMail 2.5.0 to 2.6.1 allows a remote unauthenticated... High Unreviewed

CVE-2022-21193 was published Feb 9, 2022

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ... High Unreviewed

CVE-2021-42753 was published Feb 8, 2022

An issue was discovered in FAUST iServer before 9.0.019.019.7. For each URL request, it accesses... High Unreviewed

CVE-2021-34805 was published Feb 1, 2022

SYNEL - eharmony Directory Traversal. Directory Traversal - is an attack against a server or a... High Unreviewed

CVE-2022-22790 was published Jan 29, 2022

Platinum Upnp SDK through 1.2.0 has a directory traversal vulnerability. The attack could remote... High Unreviewed

CVE-2020-19858 was published Jan 22, 2022

PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged... High Unreviewed

CVE-2021-44737 was published Jan 21, 2022

A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload... High Unreviewed

CVE-2022-23119 was published Jan 21, 2022

An issue was discovered in webp_server_go 0.4.0. There is a directory traversal vulnerability... High Unreviewed

CVE-2021-46104 was published Jan 20, 2022

This affects the package Crow before 0.3+4. It is possible to traverse directories to fetch... High Unreviewed

CVE-2021-23514 was published Jan 14, 2022

SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal (in... High Unreviewed

CVE-2020-29050 was published Jan 11, 2022

An arbitrary file read vulnerability exists in NavigateCMS 2.9 via /navigate/navigate_download... High Unreviewed

CVE-2021-44351 was published Jan 7, 2022

Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability ... High Unreviewed

CVE-2021-37126 was published Jan 4, 2022

HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this... High Unreviewed

CVE-2021-39970 was published Jan 4, 2022

Previous 1 2 … 89 90 91 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,302 advisories