GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,030
Erlang
29
GitHub Actions
17
Go
1,837
Maven
5,000+
npm
3,575
NuGet
634
pip
3,161
Pub
10
RubyGems
849
Rust
798
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
4,904 advisories
Filter by severity
A vulnerability was found in wanglongcn ltcms 1.0.20 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2024-7741
was published
Aug 13, 2024
In Ocean Data Systems Dream Report, a path traversal vulnerability could allow an attacker to...
High
Unreviewed
CVE-2024-6618
was published
Aug 13, 2024
Path traversal vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11...
High
Unreviewed
CVE-2024-23787
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43165
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43138
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-43135
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43129
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-39651
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-43140
was published
Aug 13, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The importCertificate...
Moderate
Unreviewed
CVE-2024-41938
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2023-7249
was published
Aug 12, 2024
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The vulnerability involves...
High
Unreviewed
CVE-2024-33535
was published
Aug 12, 2024
Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9...
High
Unreviewed
CVE-2024-7399
was published
Aug 12, 2024
When mounting a remote filesystem using NFS, the kernel did not sanitize remotely provided...
Moderate
Unreviewed
CVE-2024-6759
was published
Aug 12, 2024
A directory traversal vulnerability affecting Vonets industrial wifi bridge relays and wifi...
High
Unreviewed
CVE-2024-41936
was published
Aug 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability...
Critical
Unreviewed
CVE-2024-21877
was published
Aug 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability via...
Critical
Unreviewed
CVE-2024-21876
was published
Aug 12, 2024
The InfoScan client download page can be intercepted with a proxy, to
expose filenames located...
Moderate
Unreviewed
CVE-2024-42408
was published
Aug 8, 2024
Attacker controlled files can be uploaded to arbitrary locations on the web server's filesystem...
High
Unreviewed
CVE-2024-6707
was published
Aug 8, 2024
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The...
Moderate
Unreviewed
CVE-2024-7061
was published
Aug 7, 2024
Ivanti Docs@Work for Android, before 2.26.0 is affected by the 'Dirty Stream' vulnerability. The...
Moderate
Unreviewed
CVE-2024-37403
was published
Aug 7, 2024
Logsign Unified SecOps Platform Directory Traversal Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2024-7564
was published
Aug 6, 2024
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000...
Critical
Unreviewed
CVE-2024-39226
was published
Aug 6, 2024
A vulnerability was found in juzaweb CMS up to 3.4.2. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-7551
was published
Aug 6, 2024
The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all...
High
Unreviewed
CVE-2024-5709
was published
Aug 6, 2024
ProTip!
Advisories are also available from the
GraphQL API