GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,070
Composer 4,319
Erlang 31
GitHub Actions 21
Go 2,077
Maven 5,250
npm 3,746
NuGet 674
pip 3,435
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,247

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,271 advisories

Filter by severity

Sort by

Least recently updated

Improper limitation of a pathname to a restricted directory ('Path Traversal') in cgi component... High Unreviewed

CVE-2021-29088 was published May 24, 2022

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2021-29087 was published May 24, 2022

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker... High Unreviewed

CVE-2024-13179 was published Jan 14, 2025

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker... High Unreviewed

CVE-2024-13180 was published Jan 14, 2025

An unbounded resource search path in Ivanti EPM before the 2024 January-2025 Security Update and... High Unreviewed

CVE-2024-13158 was published Jan 14, 2025

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker... High Unreviewed

CVE-2024-13181 was published Jan 14, 2025

An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console... High Unreviewed

CVE-2023-28344 was published May 31, 2023

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... High Unreviewed

CVE-2024-48884 was published Jan 14, 2025

An improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... High Unreviewed

CVE-2024-36512 was published Jan 14, 2025

Prestashop salesbooster <= 1.10.4 is vulnerable to Incorrect Access Control via modules... High Unreviewed

CVE-2023-30196 was published May 30, 2023

The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up... High Unreviewed

CVE-2024-9939 was published Jan 8, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-56286 was published Jan 7, 2025

The MIPL WC Multisite Sync plugin for WordPress is vulnerable to Directory Traversal in all... High Unreviewed

CVE-2024-12152 was published Jan 7, 2025

The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all... High Unreviewed

CVE-2024-12849 was published Jan 7, 2025

Prestashop winbizpayment <= 1.0.2 is vulnerable to Incorrect Access Control via modules... High Unreviewed

CVE-2023-30198 was published Jun 12, 2023

An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18,... High Unreviewed

CVE-2024-54453 was published Dec 27, 2024

iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability... High Unreviewed

CVE-2024-11944 was published Dec 30, 2024

ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a... High Unreviewed

CVE-2024-53961 was published Dec 23, 2024

A logic issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.1.... High Unreviewed

CVE-2024-44195 was published Dec 20, 2024

Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12830 was published Dec 20, 2024

A directory traversal vulnerability exists in the archive download functionality of Veertu Anka... High Unreviewed

CVE-2024-41163 was published Oct 3, 2024

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka... High Unreviewed

CVE-2024-41922 was published Oct 3, 2024

jfinal CMS 5.1.0 has an arbitrary file read vulnerability. High Unreviewed

CVE-2023-34645 was published Jun 16, 2023

A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0... High Unreviewed

CVE-2023-42791 was published Feb 20, 2024

File Manager in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 has a traversal issue... High Unreviewed

CVE-2024-55970 was published Dec 15, 2024

Previous 1 2 3 4 5 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,271 advisories