GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,030
Erlang
29
GitHub Actions
17
Go
1,837
Maven
5,000+
npm
3,575
NuGet
634
pip
3,161
Pub
10
RubyGems
849
Rust
798
Swift
34
Unreviewed advisories
All unreviewed
5,000+
5,875 advisories
Filter by severity
F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory...
Critical
Unreviewed
CVE-2024-25830
was published
Feb 29, 2024
A vulnerability was found in wanglongcn ltcms 1.0.20 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2024-7741
was published
Aug 13, 2024
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The vulnerability involves...
High
Unreviewed
CVE-2024-33535
was published
Aug 12, 2024
In Ocean Data Systems Dream Report, a path traversal vulnerability could allow an attacker to...
High
Unreviewed
CVE-2024-6618
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2023-7249
was published
Aug 12, 2024
Path traversal vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11...
High
Unreviewed
CVE-2024-23787
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43138
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43165
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-43140
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-43135
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43129
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-39651
was published
Aug 13, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The importCertificate...
Moderate
Unreviewed
CVE-2024-41938
was published
Aug 13, 2024
A vulnerability has been identified in TIA Portal V15 (All versions), TIA Portal V16 (All...
High
Unreviewed
CVE-2023-26293
was published
Apr 11, 2023
Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The...
Moderate
Unreviewed
CVE-2024-37403
was published
Aug 7, 2024
SeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php.
Moderate
Unreviewed
CVE-2024-39036
was published
Jul 16, 2024
Filament Excel Vulnerable to Path Traversal Attack on Export Download Endpoint
High
CVE-2024-42485
was published
for
pxlrbt/filament-excel
(Composer)
Aug 12, 2024
Path traveral in Streamlit on windows
Moderate
CVE-2024-42474
was published
for
streamlit
(pip)
Aug 12, 2024
Path traversal vulnerability exists in Download Plugins and Themes from Dashboard versions prior...
Moderate
Unreviewed
CVE-2024-35162
was published
May 22, 2024
When mounting a remote filesystem using NFS, the kernel did not sanitize remotely provided...
Moderate
Unreviewed
CVE-2024-6759
was published
Aug 12, 2024
CometVisu Backend for openHAB affected by RCE through path traversal
Critical
CVE-2024-42469
was published
for
org.openhab.ui.bundles:org.openhab.ui.cometvisu
(Maven)
Aug 9, 2024
CometVisu Backend for openHAB has a path traversal vulnerability
Moderate
CVE-2024-42468
was published
for
org.openhab.ui.bundles:org.openhab.ui.cometvisu
(Maven)
Aug 9, 2024
In the module "SoNice Retour" (sonice_retour) up to version 2.1.0 from Common-Services for...
High
Unreviewed
CVE-2023-45382
was published
Nov 17, 2023
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi...
High
Unreviewed
CVE-2024-41936
was published
Aug 12, 2024
Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9...
High
Unreviewed
CVE-2024-7399
was published
Aug 12, 2024
ProTip!
Advisories are also available from the
GraphQL API