GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,681

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,352 advisories

Filter by severity

Sort by

Least recently updated

The Eventer plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and... Moderate Unreviewed

CVE-2024-10799 was published Jan 17, 2025

IBM InfoSphere Information Server 11.7 could allow a remote attacker to traverse directories on... Moderate Unreviewed

CVE-2024-52363 was published Jan 17, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... Moderate Unreviewed

CVE-2024-48885 was published Jan 16, 2025

A path handling issue was addressed with improved logic. This issue is fixed in watchOS 11.1,... Moderate Unreviewed

CVE-2024-54535 was published Jan 15, 2025

A vulnerability has been found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6... Moderate Unreviewed

CVE-2025-0461 was published Jan 14, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') [CWE-23] in... Moderate Unreviewed

CVE-2024-47566 was published Jan 14, 2025

An improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... Moderate Unreviewed

CVE-2024-33502 was published Jan 14, 2025

A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through... Moderate Unreviewed

CVE-2024-32115 was published Jan 14, 2025

Path Traversal Vulnerabilities (CWE-22) exist in NJ/NX-series Machine Automation Controllers. An... Moderate Unreviewed

CVE-2024-12083 was published Jan 14, 2025

A vulnerability classified as critical has been found in 1902756969 reggie 1.0. Affected is the... Moderate Unreviewed

CVE-2025-0401 was published Jan 13, 2025

The InfiniteWP Client plugin for WordPress is vulnerable to Path Traversal in all versions up to,... Moderate Unreviewed

CVE-2024-10585 was published Jan 8, 2025

Path traversal vulnerability in the Medialibrary module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2023-52953 was published Jan 8, 2025

An attacker who successfully exploited these vulnerabilities could grant read access to files. A... Moderate Unreviewed

CVE-2024-12429 was published Jan 7, 2025

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker... Moderate Unreviewed

CVE-2024-41765 was published Jan 4, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-56248 was published Jan 2, 2025

In WhatsUp Gold versions released before 2024.0.2, an authenticated user can use a specially... Moderate Unreviewed

CVE-2024-12105 was published Dec 31, 2024

An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18.... Moderate Unreviewed

CVE-2024-54452 was published Dec 27, 2024

The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is... Moderate Unreviewed

CVE-2024-12850 was published Dec 24, 2024

A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3.... Moderate Unreviewed

CVE-2024-12793 was published Dec 19, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-54382 was published Dec 16, 2024

A vulnerability was found in InvoicePlane up to 1.6.1. It has been classified as problematic.... Moderate Unreviewed

CVE-2024-12362 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-54259 was published Dec 13, 2024

An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to... Moderate Unreviewed

CVE-2024-8647 was published Dec 12, 2024

Windows File Explorer Information Disclosure Vulnerability Moderate Unreviewed

CVE-2024-49082 was published Dec 12, 2024

A vulnerability was found in cjbi wetech-cms 1.0/1.1/1.2. It has been rated as problematic.... Moderate Unreviewed

CVE-2024-12482 was published Dec 12, 2024

Previous 1 2 3 4 5 … 94 95 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,352 advisories