GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,384 advisories

Filter by severity

Sort by

Least recently updated

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or... Moderate Unreviewed

CVE-2024-48019 was published Feb 4, 2025

A vulnerability classified as critical has been found in CmsEasy 7.7.7.9. This affects the... Moderate Unreviewed

CVE-2025-1106 was published Feb 7, 2025

The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress... Moderate Unreviewed

CVE-2024-12875 was published Dec 21, 2024

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote... Moderate Unreviewed

CVE-2020-4430 was published May 24, 2022

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the... Moderate Unreviewed

CVE-2024-9676 was published Oct 15, 2024

In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the... Moderate Unreviewed

CVE-2019-7483 was published May 24, 2022

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Path Traversal in... Moderate Unreviewed

CVE-2024-3107 was published May 2, 2024

The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is... Moderate Unreviewed

CVE-2025-0859 was published Feb 6, 2025

IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow... Moderate Unreviewed

CVE-2025-0799 was published Feb 6, 2025

An issue in the action_listcategories() function of Sangoma Asterisk v22/22.0.0/22.0.0-rc1/22.0.0... Moderate Unreviewed

CVE-2024-53566 was published Dec 2, 2024

The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1)... Moderate Unreviewed

CVE-2020-11738 was published May 24, 2022

Dell OpenManage Enterprise, v4.0 and prior, contain(s) a path traversal vulnerability. An... Moderate Unreviewed

CVE-2024-25944 was published Mar 29, 2024

An issue in the component /php/script_uploads.php of Zenitel AlphaWeb XE v11.2.3.10 allows... Moderate Unreviewed

CVE-2024-57784 was published Jan 17, 2025

A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead... Moderate Unreviewed

CVE-2024-41972 was published Nov 18, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2025-24605 was published Feb 3, 2025

A vulnerability classified as critical was found in CmsEasy 7.7.7.9. This vulnerability affects... Moderate Unreviewed

CVE-2025-0973 was published Feb 3, 2025

The Jupiter X Core plugin for WordPress is vulnerable to Directory Traversal in all versions up... Moderate Unreviewed

CVE-2025-0365 was published Feb 1, 2025

A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and... Moderate Unreviewed

CVE-2024-46664 was published Jan 14, 2025

Sante PACS Server DCM File Parsing Directory Traversal Arbitrary File Write Vulnerability. This... Moderate Unreviewed

CVE-2025-0573 was published Jan 30, 2025

Sante PACS Server Web Portal DCM File Parsing Directory Traversal Arbitrary File Write... Moderate Unreviewed

CVE-2025-0572 was published Jan 30, 2025

Arbitrary file upload, deletion and read through header manipulation Moderate Unreviewed

CVE-2024-55926 was published Jan 23, 2025

A vulnerability has been identified in Node.js, specifically affecting the handling of drive... Moderate Unreviewed

CVE-2025-23084 was published Jan 28, 2025

SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation... Moderate Unreviewed

CVE-2018-2380 was published May 14, 2022

IBM Cloud Pak System 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0... Moderate Unreviewed

CVE-2023-38012 was published Jan 25, 2025

The ABC Notation plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2024-13550 was published Jan 25, 2025

Previous 1 2 3 4 5 … 95 96 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,384 advisories