Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,681 advisories

Loading
LimeSurvey before 4.1.12+200324 contains a path traversal vulnerability in application... Moderate Unreviewed
CVE-2020-11455 was published May 24, 2022
Directory traversal vulnerability in the MT Fire Eagle (com_mtfireeagle) component 1.2 for Joomla... Moderate Unreviewed
CVE-2010-1719 was published May 17, 2022
Directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) component for Joomla! allows... Moderate Unreviewed
CVE-2010-1534 was published May 17, 2022
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post... Moderate Unreviewed
CVE-2021-20023 was published May 24, 2022
Directory traversal vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP... Moderate Unreviewed
CVE-2010-1589 was published May 17, 2022
Directory traversal vulnerability in the JA Comment (com_jacomment) component for Joomla! allows... Moderate Unreviewed
CVE-2010-1601 was published May 17, 2022
Directory traversal vulnerability in the Ultimate Portfolio (com_ultimateportfolio) component 1.0... Moderate Unreviewed
CVE-2010-1659 was published May 17, 2022
Multiple directory traversal vulnerabilities in index.php in Linker IMG 1.0 and earlier allow... Moderate Unreviewed
CVE-2010-2456 was published May 17, 2022
Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Directory Traversal vulnerability... Moderate Unreviewed
CVE-2020-24368 was published May 24, 2022
Directory traversal vulnerability in login.php in Siestta 2.0, when register_globals is enabled,... Moderate Unreviewed
CVE-2010-1710 was published May 17, 2022
Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder)... Moderate Unreviewed
CVE-2010-2680 was published May 17, 2022
Multiple directory traversal vulnerabilities in ProMan 0.1.1 and earlier allow remote attackers... Moderate Unreviewed
CVE-2010-2138 was published May 17, 2022
Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem... Moderate Unreviewed
CVE-2010-2307 was published May 17, 2022
Directory traversal vulnerability in index.php in Anodyne Productions SIMM Management System (SMS... Moderate Unreviewed
CVE-2010-2313 was published May 17, 2022
Directory traversal vulnerability in the SMEStorage (com_smestorage) component before 1.1 for... Moderate Unreviewed
CVE-2010-1858 was published May 17, 2022
Directory traversal vulnerability in the Online Market (com_market) component 2.x for Joomla!... Moderate Unreviewed
CVE-2010-1722 was published May 17, 2022
Directory traversal vulnerability in the Online Examination (aka Online Exam or com_onlineexam)... Moderate Unreviewed
CVE-2010-1715 was published May 17, 2022
Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when... Moderate Unreviewed
CVE-2010-1935 was published May 17, 2022
Directory traversal vulnerability in scr/soustab.php in openMairie openPlanning 1.00, when... Moderate Unreviewed
CVE-2010-1928 was published May 17, 2022
Directory traversal vulnerability in scr/soustab.php in openMairie openComInterne 1.01, when... Moderate Unreviewed
CVE-2010-1936 was published May 17, 2022
Multiple directory traversal vulnerabilities in index.php in Open Web Analytics (OWA) 1.2.3 might... Moderate Unreviewed
CVE-2010-2676 was published May 17, 2022
Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow... Moderate Unreviewed
CVE-2020-13886 was published May 24, 2022
In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting... Moderate Unreviewed
CVE-2020-35176 was published May 24, 2022
An issue was discovered in Hyland OnBase through 18.0.0.32 and 19.x through 19.8.9.1000.... Moderate Unreviewed
CVE-2020-25248 was published May 24, 2022
The Simple:Press plugin for WordPress is vulnerable to arbitrary file modifications in versions... Moderate Unreviewed
CVE-2022-4031 was published Nov 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database