Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,201
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,702
NuGet
660
pip
3,328
Pub
11
RubyGems
883
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,739 advisories

Loading
Duplicate Advisory: Reposilite Arbitrary File Read vulnerability High
CVE-2024-36117 was published for com.reposilite:reposilite-backend (Maven) Aug 5, 2024 withdrawn
Nuxt Devtools has a Path Traversal: '../filedir' High
CVE-2024-23657 was published for @nuxt/devtools (npm) Aug 5, 2024
OhB00 antfu
Path traversal in Reposilite javadoc file expansion (arbitrary file creation/overwrite) (`GHSL-2024-073`) High
CVE-2024-36116 was published for com.reposilite:reposilite-backend (Maven) Aug 2, 2024
artsploit
AndServer 2.1.12 is vulnerable to Directory Traversal. High Unreviewed
CVE-2024-41310 was published Aug 2, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-39624 was published Aug 1, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-39621 was published Aug 1, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-38746 was published Aug 1, 2024
Weave server API vulnerable to arbitrary file leak High
CVE-2024-7340 was published for weave (pip) Jul 31, 2024
A vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 allows... High Unreviewed
CVE-2024-6255 was published Jul 31, 2024
Cybonet - CWE-22: Improper Limitation of a Pathname to a Restricted Directory High Unreviewed
CVE-2024-41695 was published Jul 30, 2024
Comodo Internet Security Pro Directory Traversal Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2024-7248 was published Jul 30, 2024
tgstation-server's DreamMaker environment files outside the deployment directory can be compiled and ran by insufficiently permissioned users High
CVE-2024-41799 was published for Tgstation.Server.Api (NuGet) Jul 29, 2024
SandPoot Cyberboss
Path traversal vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this... High Unreviewed
CVE-2024-41726 was published Jul 29, 2024
Directory Traversal vulnerability in Severalnines Cluster Control 1.9.8 before 1.9.8-9778, 2.0.0... High Unreviewed
CVE-2024-41628 was published Jul 26, 2024
The MaxiBlocks: 2200+ Patterns, 190 Pages, 14.2K Icons & 100 Styles plugin for WordPress is... High Unreviewed
CVE-2024-6885 was published Jul 23, 2024
A directory path traversal vulnerability exists when loading a vsmodel file in NI VeriStand that... High Unreviewed
CVE-2024-6791 was published Jul 22, 2024
IP Guard v4.81.0307.0 was discovered to contain an arbitrary file read vulnerability via the file... High Unreviewed
CVE-2024-40051 was published Jul 22, 2024
Directory Traversal vulnerability in Punkbuster pbsv.d64 2.351, allows remote attackers to... High Unreviewed
CVE-2020-24102 was published Jul 22, 2024
An issue in the component /api/swaggerui/static of Bazaar v1.4.3 allows unauthenticated attackers... High Unreviewed
CVE-2024-40348 was published Jul 20, 2024
Woodpecker's custom workspace allow to overwrite plugin entrypoint executable High
CVE-2024-41121 was published for go.woodpecker-ci.org/woodpecker (Go) Jul 19, 2024
The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information... High Unreviewed
CVE-2024-28993 was published Jul 17, 2024
The SolarWinds Access Rights Manager was found to be susceptible to an Arbitrary File Deletion... High Unreviewed
CVE-2024-23474 was published Jul 17, 2024
The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information... High Unreviewed
CVE-2024-28992 was published Jul 17, 2024
The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information... High Unreviewed
CVE-2024-23468 was published Jul 17, 2024
Local File Inclusion in Solara High
CVE-2024-39903 was published for solara (pip) Jul 12, 2024
sunriseXu
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database