GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
119 advisories
Filter by severity
Improper Limitation of a Pathname to a Restricted Directory in Spring Framework
Moderate
CVE-2014-3625
was published
for
org.springframework:spring-webmvc
(Maven)
May 13, 2022
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Moderate
CVE-2018-6356
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 13, 2022
Path Traversal in com.alibaba.oneagent:one-java-agent-plugin
Moderate
CVE-2022-25842
was published
for
com.alibaba.oneagent:one-java-agent-plugin
(Maven)
May 3, 2022
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Apache Tomcat
Moderate
CVE-2009-2902
was published
for
org.apache.tomcat:tomcat
(Maven)
May 2, 2022
Apache Tomcat Directory Traversal vulnerability
Moderate
CVE-2009-2693
was published
for
org.apache.tomcat:tomcat
(Maven)
May 2, 2022
Directory traversal in Mort Bay Jetty
Moderate
CVE-2009-1523
was published
for
org.mortbay.jetty:jetty
(Maven)
May 2, 2022
Apache Tomcat Directory Traversal vulnerability
Moderate
CVE-2008-2938
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Apache Tomcat Path Traversal Vulnerability
Moderate
CVE-2008-2370
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Mortbay Jetty Double Slash URI Information Disclosure Vulnerability
Moderate
CVE-2007-6672
was published
for
org.mortbay.jetty:jetty
(Maven)
May 1, 2022
Apache Tomcat Directory Traversal
Moderate
CVE-2007-0450
was published
for
org.apache.tomcat:tomcat
(Maven)
May 1, 2022
Jetty Directory Traversal Vulnerability
Moderate
CVE-2006-2758
was published
for
org.mortbay.jetty:jetty
(Maven)
May 1, 2022
Apache Tomcat Directory Traversal
Moderate
CVE-2000-1210
was published
for
org.apache.tomcat:tomcat
(Maven)
Apr 30, 2022
Jakarta Tomcat Directory Listing vulnerability
Moderate
CVE-2003-0042
was published
for
org.apache.tomcat:tomcat
(Maven)
Apr 29, 2022
Arbitrary file read vulnerability in Jenkins Continuous Integration with Toad Edge Plugin
Moderate
CVE-2022-28146
was published
for
org.jenkins-ci.plugins:ci-with-toad-edge
(Maven)
Mar 30, 2022
Path traversal in Jenkins Phoenix AutoTest Plugin
Moderate
CVE-2022-28156
was published
for
com.surenpi.jenkins:phoenix-autotest
(Maven)
Mar 30, 2022
Path traversal vulnerability on Windows in Jenkins Continuous Integration with Toad Edge Plugin
Moderate
CVE-2022-28148
was published
for
org.jenkins-ci.plugins:ci-with-toad-edge
(Maven)
Mar 30, 2022
Path traversal in Jenkins Pipeline Phoenix AutoTest Plugin
Moderate
CVE-2022-28157
was published
for
com.surenpi.jenkins:phoenix-autotest
(Maven)
Mar 30, 2022
Path Traversal in Spring-integration-zip
Moderate
CVE-2021-22114
was published
for
org.springframework.integration:spring-integration-zip
(Maven)
Mar 18, 2022
Arbitrary JSON and property file read vulnerability in Jenkins Extended Choice Parameter Plugin
Moderate
CVE-2022-27203
was published
for
org.jenkins-ci.plugins:extended-choice-parameter
(Maven)
Mar 16, 2022
Arbitrary file read vulnerability in Jenkins kubernetes-cd Plugin
Moderate
CVE-2022-27208
was published
for
org.jenkins-ci.plugins:kubernetes-cd
(Maven)
Mar 16, 2022
Path Traversal in LemMinX
Moderate
CVE-2022-0673
was published
for
org.eclipse.lemminx:lemminx-parent
(Maven)
Feb 19, 2022
Improper Limitation of a Pathname to a Restricted Directory in Jenkins Pipeline: Shared Groovy Libraries Plugin
Moderate
CVE-2022-25178
was published
for
org.jenkins-ci.plugins.workflow:workflow-cps-global-lib
(Maven)
Feb 16, 2022
Path traversal vulnerability in Jenkins Fortify Plugin
Moderate
CVE-2022-25188
was published
for
org.jenkins-ci.plugins:fortify
(Maven)
Feb 16, 2022
Path traversal in xwiki-platform-skin-skinx
Moderate
CVE-2022-23620
was published
for
org.xwiki.platform:xwiki-platform-skin-skinx
(Maven)
Feb 9, 2022
Path Traversal in Apache James Server
Moderate
CVE-2022-22931
was published
for
org.apache.james:james-server
(Maven)
Feb 8, 2022
ProTip!
Advisories are also available from the
GraphQL API