GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,030
Erlang
29
GitHub Actions
17
Go
1,837
Maven
5,000+
npm
3,575
NuGet
634
pip
3,161
Pub
10
RubyGems
849
Rust
798
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,559 advisories
Filter by severity
A vulnerability was found in wanglongcn ltcms 1.0.20 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2024-7741
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43165
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43138
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43129
was published
Aug 13, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The importCertificate...
Moderate
Unreviewed
CVE-2024-41938
was published
Aug 13, 2024
Path traveral in Streamlit on windows
Moderate
CVE-2024-42474
was published
for
streamlit
(pip)
Aug 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2023-7249
was published
Aug 12, 2024
When mounting a remote filesystem using NFS, the kernel did not sanitize remotely provided...
Moderate
Unreviewed
CVE-2024-6759
was published
Aug 12, 2024
CometVisu Backend for openHAB has a path traversal vulnerability
Moderate
CVE-2024-42468
was published
for
org.openhab.ui.bundles:org.openhab.ui.cometvisu
(Maven)
Aug 9, 2024
The InfoScan client download page can be intercepted with a proxy, to
expose filenames located...
Moderate
Unreviewed
CVE-2024-42408
was published
Aug 8, 2024
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The...
Moderate
Unreviewed
CVE-2024-7061
was published
Aug 7, 2024
Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The...
Moderate
Unreviewed
CVE-2024-37403
was published
Aug 7, 2024
Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-7564
was published
Aug 6, 2024
A vulnerability was found in juzaweb CMS up to 3.4.2. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-7551
was published
Aug 6, 2024
A vulnerability was found in elunez eladmin up to 2.7 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2024-7458
was published
Aug 5, 2024
A vulnerability has been identified in Omnivise T3000 Application Server (All versions). Affected...
Moderate
Unreviewed
CVE-2024-38878
was published
Aug 2, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-38772
was published
Aug 1, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-38768
was published
Aug 1, 2024
Dell Inventory Collector, versions prior to 12.3.0.6 contains a Path Traversal vulnerability. A...
Moderate
Unreviewed
CVE-2024-37129
was published
Jul 31, 2024
A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma...
Moderate
Unreviewed
CVE-2024-27871
was published
Jul 30, 2024
SPX (aka php-spx) through 0.4.15 allows SPX_UI_URI Directory Traversal to read arbitrary files.
Moderate
Unreviewed
CVE-2024-42007
was published
Jul 26, 2024
ICEcoder Path Traversal vulnerability
Moderate
CVE-2024-41373
was published
for
icecoder/icecoder
(Composer)
Jul 26, 2024
A vulnerability was found in SourceCodester Insurance Management System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-7080
was published
Jul 24, 2024
A vulnerability classified as problematic was found in Gargaj wuhu up to...
Moderate
Unreviewed
CVE-2024-6949
was published
Jul 21, 2024
The Mercado Pago payments for WooCommerce plugin for WordPress is vulnerable to Path Traversal in...
Moderate
Unreviewed
CVE-2024-3934
was published
Jul 20, 2024
ProTip!
Advisories are also available from the
GraphQL API