GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,399

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,303 advisories

Filter by severity

Sort by

Least recently updated

It was discovered that on Windows operating systems specifically, Kibana was not validating a... Moderate Unreviewed

CVE-2021-37938 was published Nov 19, 2021

OX App Suite through 7.10.5 allows Directory Traversal via ../ in an OOXML or ODF ZIP archive,... Moderate Unreviewed

CVE-2021-33491 was published Nov 23, 2021

There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of... Moderate Unreviewed

CVE-2021-37023 was published Nov 24, 2021

Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read... Moderate Unreviewed

CVE-2021-40858 was published Dec 14, 2021

A vulnerability has been identified in SIMATIC eaSie PCS 7 Skill Package (All versions < V21.00... Moderate Unreviewed

CVE-2021-42022 was published Dec 15, 2021

Specially-crafted command line arguments can lead to arbitrary file deletion. The handle_delete... Moderate Unreviewed

CVE-2021-21908 was published Dec 23, 2021

A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett... Moderate Unreviewed

CVE-2021-21907 was published Dec 23, 2021

A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of... Moderate Unreviewed

CVE-2021-21896 was published Dec 23, 2021

A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of... Moderate Unreviewed

CVE-2021-21886 was published Dec 23, 2021

Path traversal vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession... Moderate Unreviewed

CVE-2021-20876 was published Dec 25, 2021

An information exposure issue has been discovered in Opmantek Open-AudIT 4.2.0. The vulnerability... Moderate Unreviewed

CVE-2021-44674 was published Jan 4, 2022

The OMGF | Host Google Fonts Locally WordPress plugin before 4.5.12 does not validate the cache... Moderate Unreviewed

CVE-2021-25021 was published Jan 4, 2022

The CAOS | Host Google Analytics Locally WordPress plugin before 4.1.9 does not validate the... Moderate Unreviewed

CVE-2021-25020 was published Jan 4, 2022

CoreFTP Server before 727 allows directory traversal (for file creation) by an authenticated... Moderate Unreviewed

CVE-2022-22836 was published Jan 11, 2022

HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability... Moderate Unreviewed

CVE-2021-40003 was published Jan 11, 2022

The CaasKit module has a path traversal vulnerability. Successful exploitation of this... Moderate Unreviewed

CVE-2021-40001 was published Jan 11, 2022

ChronoForums 2.0.11 allows av Directory Traversal to read arbitrary files. Moderate Unreviewed

CVE-2021-28377 was published Jan 13, 2022

ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files. Moderate Unreviewed

CVE-2021-28376 was published Jan 13, 2022

ASUS RT-AX56U’s login function contains a path traversal vulnerability due to its inadequate... Moderate Unreviewed

CVE-2022-22054 was published Jan 15, 2022

Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal... Moderate Unreviewed

CVE-2021-41551 was published Jan 19, 2022

Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter. Moderate Unreviewed

CVE-2021-46203 was published Jan 20, 2022

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2022-22679 was published Feb 8, 2022

Directory traversal in /northstar/Common/NorthFileManager/fileManagerObjects.jsp Northstar... Moderate Unreviewed

CVE-2021-29398 was published Feb 9, 2022

Directory Traversal vulnerability exists in ZZCMS 2021 via the skin parameter in 1) index.php, 2)... Moderate Unreviewed

CVE-2021-45286 was published Feb 10, 2022

A vulnerability has been identified in COMOS (All versions < V10.4.1). The COMOS Web component of... Moderate Unreviewed

CVE-2021-37196 was published Feb 10, 2022

Previous 1 2 3 4 5 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,303 advisories