GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,505

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,303 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the... Moderate Unreviewed

CVE-2024-9676 was published Oct 15, 2024

An issue in EnvisionWare Computer Access & Reservation Control SelfCheck v1.0 (fixed in OneStop 3... Moderate Unreviewed

CVE-2024-37825 was published Jun 24, 2024

Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi... Moderate Unreviewed

CVE-2024-0067 was published Sep 10, 2024

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal (via a... Moderate Unreviewed

CVE-2024-33870 was published Jul 3, 2024

A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and... Moderate Unreviewed

CVE-2024-20529 was published Nov 6, 2024

A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and... Moderate Unreviewed

CVE-2024-20532 was published Nov 6, 2024

A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and... Moderate Unreviewed

CVE-2024-20527 was published Nov 6, 2024

An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful... Moderate Unreviewed

CVE-2024-47464 was published Nov 6, 2024

A vulnerability in the file upload functionality of Cisco AppDynamics Controller could allow an... Moderate Unreviewed

CVE-2024-20345 was published Mar 6, 2024

Vulnerability of file path verification being bypassed in the email module. Impact: Successful... Moderate Unreviewed

CVE-2023-52544 was published Apr 8, 2024

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ... Moderate Unreviewed

CVE-2024-20379 was published Oct 23, 2024

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command... Moderate Unreviewed

CVE-2024-33869 was published Jul 3, 2024

Directory traversal vulnerability exists in a-blog cms Ver.3.1.x series Ver.3.1.9 and earlier,... Moderate Unreviewed

CVE-2024-27279 was published Mar 12, 2024

RockOA v2.6.5 is vulnerable to Directory Traversal in webmain/system/beifen/beifenAction.php. Moderate Unreviewed

CVE-2024-48213 was published Oct 24, 2024

A vulnerability classified as problematic was found in ESAFENET CDG 5. Affected by this... Moderate Unreviewed

CVE-2024-10379 was published Oct 25, 2024

There is an arbitrary file deletion vulnerability in the CLI used by ArubaOS. Successful... Moderate Unreviewed

CVE-2024-25614 was published Mar 5, 2024

An arbitrary file read vulnerability in DedeCMS v5.7.114 allows authenticated attackers to read... Moderate Unreviewed

CVE-2024-34245 was published May 14, 2024

Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path... Moderate Unreviewed

CVE-2024-45842 was published Oct 25, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-47841 was published Oct 5, 2024

Path Traversal vulnerability discovered in OpenText™ CX-E Voice, affecting all version through... Moderate Unreviewed

CVE-2023-7260 was published Aug 22, 2024

NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path... Moderate Unreviewed

CVE-2024-0129 was published Oct 15, 2024

NCSIST ManageEngine Mobile Device Manager(MDM) APP's special function has a path traversal... Moderate Unreviewed

CVE-2023-41356 was published Nov 3, 2023

In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was... Moderate Unreviewed

CVE-2024-47948 was published Oct 8, 2024

In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary... Moderate Unreviewed

CVE-2024-47949 was published Oct 8, 2024

The WordPress Comments Import & Export plugin for WordPress is vulnerable to to arbitrary file... Moderate Unreviewed

CVE-2024-7514 was published Oct 11, 2024

Previous 1 2 3 4 5 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,303 advisories