Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,611
NuGet
638
pip
3,209
Pub
10
RubyGems
853
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,980 advisories

Loading
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Sensitive information is... High Unreviewed
CVE-2024-45175 was published Sep 5, 2024
An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper user... High Unreviewed
CVE-2024-45178 was published Sep 5, 2024
Path Traversal in My Files prior to SMR Sep-2024 Release 1 allows physical attackers to access... Moderate Unreviewed
CVE-2024-34653 was published Sep 4, 2024
A vulnerability classified as problematic has been found in ABCD ABCD2 up to 2.2.0-beta-1. This... Moderate Unreviewed
CVE-2024-8409 was published Sep 4, 2024
Couchbase Server 7.1.4 before 7.1.5 and 7.2.0 before 7.2.1 allows Directory Traversal. High Unreviewed
CVE-2023-36667 was published Nov 9, 2023
Path Traversal in bikshed Moderate
CVE-2021-23423 was published for bikeshed (pip) Aug 30, 2021
Path Traversal in Ansible Moderate
CVE-2020-10691 was published for ansible (pip) Apr 20, 2021
tdunlap607
aiohttp is vulnerable to directory traversal Moderate
CVE-2024-23334 was published for aiohttp (pip) Jan 29, 2024
lcttty solarpeng502
IBM webMethods Integration 10.15 could allow an authenticated user to traverse directories on the... Moderate Unreviewed
CVE-2024-45074 was published Sep 4, 2024
@actions/artifact has an Arbitrary File Write via artifact extraction High
CVE-2024-42471 was published for @actions/artifact (npm) Sep 3, 2024
JLHwung
@actions/download-artifact has an Arbitrary File Write via artifact extraction High
GHSA-cxww-7g56-2vh6 was published for actions/download-artifact (GitHub Actions) Sep 3, 2024
holmanb
A vulnerability classified as problematic was found in ABCD ABCD2 up to 2.2.0-beta-1. This... Moderate Unreviewed
CVE-2024-8410 was published Sep 4, 2024
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Directory... High Unreviewed
CVE-2024-8104 was published Sep 4, 2024
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for... Critical Unreviewed
CVE-2024-7950 was published Sep 4, 2024
Directory traversal vulnerability in the cust module Impact: Successful exploitation of this... Moderate Unreviewed
CVE-2024-45443 was published Sep 4, 2024
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download... High Unreviewed
CVE-2021-20124 was published May 24, 2022
Arbitrary file reading vulnerability in Aim High
CVE-2021-43775 was published for aim (pip) Nov 23, 2021
haby0
The product allows user input to control or influence paths or file names that are used in... Critical Unreviewed
CVE-2024-3980 was published Aug 27, 2024
An issue in EQ Enterprise Management System before v2.0.0 allows attackers to execute a directory... Critical Unreviewed
CVE-2024-44761 was published Aug 28, 2024
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download... High Unreviewed
CVE-2021-20123 was published May 24, 2022
Vulnerability in Delinea Centrify PAS v. 21.3 and possibly others. The application is prone to... Moderate Unreviewed
CVE-2024-5866 was published Jul 2, 2024
Vulnerability in Delinea Centrify PAS v. 21.3 and possibly others. The application is prone to... High Unreviewed
CVE-2024-5865 was published Jul 2, 2024
Possible path traversal in Apache OFBiz allowing authentication bypass. Users are recommended to... Critical Unreviewed
CVE-2024-25065 was published Feb 29, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-43957 was published Aug 29, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Critical Unreviewed
CVE-2024-43955 was published Aug 29, 2024
ProTip! Advisories are also available from the GraphQL API