GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,245
Erlang
31
GitHub Actions
21
Go
2,010
Maven
5,000+
npm
3,718
NuGet
662
pip
3,391
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,776 advisories
Filter by severity
A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API....
High
Unreviewed
CVE-2024-11481
was published
Nov 29, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-52481
was published
Nov 28, 2024
The File Manager Pro – Filester plugin for WordPress is vulnerable to Local JavaScript File...
High
Unreviewed
CVE-2024-9669
was published
Nov 28, 2024
A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware...
High
Unreviewed
CVE-2024-11667
was published
Nov 27, 2024
Kubernetes kubelet arbitrary command execution
High
CVE-2024-10220
was published
for
k8s.io/kubernetes
(Go)
Nov 22, 2024
A vulnerability in the sfmgr daemon of Cisco Firepower Management Center (FMC) Software and Cisco...
High
Unreviewed
CVE-2020-3550
was published
May 24, 2022
Improper processing of some parameters of installed_emanual_list.html leads to a path traversal...
High
Unreviewed
CVE-2024-33605
was published
Nov 26, 2024
DotNetZip Directory Traversal vulnerability
High
CVE-2024-48510
was published
for
DotNetZip
(NuGet)
Nov 13, 2024
A vulnerability, which was classified as critical, has been found in eNMS up to 4.2. Affected by...
High
Unreviewed
CVE-2024-11664
was published
Nov 25, 2024
The MP3 Sticky Player plugin for WordPress is vulnerable to Directory Traversal in all versions...
High
Unreviewed
CVE-2024-10803
was published
Nov 23, 2024
SMARTBEAR SoapUI unpackageAll Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-7565
was published
Nov 23, 2024
Allegra downloadAttachmentGlobal Directory Traversal Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2023-52334
was published
Nov 22, 2024
Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2023-52332
was published
Nov 22, 2024
Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51647
was published
Nov 22, 2024
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-51643
was published
Nov 22, 2024
Allegra uploadSimpleFile Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51646
was published
Nov 22, 2024
Allegra extarctZippedFile Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51640
was published
Nov 22, 2024
Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2023-51648
was published
Nov 22, 2024
Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-51645
was published
Nov 22, 2024
Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-5581
was published
Nov 22, 2024
GitHub Security Lab (GHSL) Vulnerability Report: Arbitary write GHSL-2023-182
High
CVE-2023-50731
was published
for
mindsdb
(pip)
Dec 15, 2023
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
High
Unreviewed
CVE-2024-52055
was published
Nov 22, 2024
The pathname of the root directory to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-11303
was published
Nov 18, 2024
Unpatched Remote Code Execution in Gogs
High
CVE-2024-44625
was published
for
gogs.io/gogs
(Go)
Nov 15, 2024
The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers...
High
Unreviewed
CVE-2024-11310
was published
Nov 18, 2024
ProTip!
Advisories are also available from the
GraphQL API