Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,611
NuGet
638
pip
3,209
Pub
10
RubyGems
853
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

5,980 advisories

Loading
Path traversal in the skin management component of Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed
CVE-2024-38652 was published Aug 14, 2024
IP Guard v4.81.0307.0 was discovered to contain an arbitrary file read vulnerability via the file... High Unreviewed
CVE-2024-40051 was published Jul 22, 2024
A Directory Traversal vulnerability in Modern Campus - Omni CMS 2023.1 allows a remote,... Moderate Unreviewed
CVE-2023-35860 was published Jun 13, 2024
Jan path traversal vulnerability High
CVE-2024-36857 was published for @janhq/core (npm) Jun 4, 2024
CLSA Directory Traversal vulnerability Critical
CVE-2024-28698 was published for Csla (NuGet) Jul 22, 2024
rockfordlhotka
webcrack has an Arbitrary File Write Vulnerability on Windows when Parsing and Saving a Malicious Bundle High
CVE-2024-43373 was published for webcrack (npm) Aug 14, 2024
SteakEnthusiast
Jan path traversal vulnerability Critical
CVE-2024-37273 was published for @janhq/core (npm) Jun 4, 2024
Directory Traversal vulnerability in Terrasoft, Creatio Terrasoft CRM v.7.18.4.1532 allows a... High Unreviewed
CVE-2024-25461 was published Feb 21, 2024
The JetTabs for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all... High Unreviewed
CVE-2024-7146 was published Aug 16, 2024
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12... Critical Unreviewed
CVE-2024-7263 was published Aug 15, 2024
The JetElements plugin for WordPress is vulnerable to Local File Inclusion in all versions up to,... High Unreviewed
CVE-2024-7145 was published Aug 16, 2024
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12... Critical Unreviewed
CVE-2024-7262 was published Aug 15, 2024
Directory Traversal vulnerability in zly2006 Reden before v.0.2.514 allows a remote attacker to... High Unreviewed
CVE-2024-29672 was published Apr 5, 2024
iA Path Traversal vulnerability exists in iDURAR v2.0.0, that allows unauthenticated attackers to... High Unreviewed
CVE-2024-25164 was published Mar 5, 2024
Directory Traversal vulnerability in DICOM® Connectivity Framework by laurelbridge before v.2.7... High Unreviewed
CVE-2024-25386 was published Mar 1, 2024
Jenkins Remoting library arbitrary file read vulnerability Critical
CVE-2024-43044 was published for org.jenkins-ci.main:jenkins-core (Maven) Aug 7, 2024
RDF4J vulnerable to zip slip High
CVE-2018-20227 was published for org.eclipse.rdf4j:rdf4j (Maven) May 14, 2022
MarkLee131
Path traversal vulnerability exists in Machine Automation Controller NJ Series and Machine... High Unreviewed
CVE-2024-27121 was published Mar 12, 2024
The BackWPup plugin for WordPress is vulnerable to Directory Traversal in versions up to, and... Moderate Unreviewed
CVE-2023-5505 was published Aug 17, 2024
An arbitrary file deletion vulnerability exists in the admin/del.php file at line 62 in ZZCMS... Moderate Unreviewed
CVE-2024-43011 was published Aug 16, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43232 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43221 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43248 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-43281 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43271 was published Aug 19, 2024
ProTip! Advisories are also available from the GraphQL API