Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

18 advisories

Loading
Path Traversal vulnerability in FULL. FULL Customer allows Path Traversal.This issue affects FULL... Moderate Unreviewed
CVE-2024-54313 was published Dec 13, 2024
The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to Directory... Moderate Unreviewed
CVE-2024-10857 was published Nov 26, 2024
: Path Traversal: '.../...//' vulnerability in CYAN Backup allows Path Traversal.This issue... Moderate Unreviewed
CVE-2024-52390 was published Nov 19, 2024
A vulnerability in the API subsystem and in the web-management interface of Cisco Network... Moderate Unreviewed
CVE-2021-1132 was published Nov 18, 2024
A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead... Moderate Unreviewed
CVE-2024-41972 was published Nov 18, 2024
Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery... Moderate Unreviewed
CVE-2024-49258 was published Oct 16, 2024
Marinus Pfund, member of the AXIS OS Bug Bounty Program, has found the VAPIX API ledlimit.cgi... Moderate Unreviewed
CVE-2024-0067 was published Sep 10, 2024
An authenticated user can download sensitive files from Trellix products NX, EX, FX, AX, IVX, ... Moderate Unreviewed
CVE-2024-7608 was published Aug 27, 2024
htmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the... Moderate Unreviewed
CVE-2024-34191 was published May 14, 2024
This vulnerability allows remote attackers to traverse paths via file upload on the affected LG... Moderate Unreviewed
CVE-2024-2863 was published Mar 25, 2024
: Path Traversal vulnerability in Pandora FMS on all allows Path Traversal. This vulnerability... Moderate Unreviewed
CVE-2023-41793 was published Mar 19, 2024
Vintage, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay... Moderate Unreviewed
CVE-2023-5800 was published Feb 5, 2024
The discontinued FFS Colibri product allows a remote user to access files on the system including... Moderate Unreviewed
CVE-2023-5885 was published Nov 28, 2023
NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 contains a possible path traversal... Moderate Unreviewed
CVE-2023-39916 was published Sep 13, 2023
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ... Moderate Unreviewed
CVE-2021-1364 was published May 24, 2022
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ... Moderate Unreviewed
CVE-2021-1357 was published May 24, 2022
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ... Moderate Unreviewed
CVE-2021-1355 was published May 24, 2022
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ... Moderate Unreviewed
CVE-2021-1282 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database