GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
6,264 advisories
Filter by severity
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the...
Moderate
Unreviewed
CVE-2024-9676
was published
Oct 15, 2024
The MP3 Sticky Player plugin for WordPress is vulnerable to Directory Traversal in all versions...
High
Unreviewed
CVE-2024-10803
was published
Nov 23, 2024
SMARTBEAR SoapUI unpackageAll Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-7565
was published
Nov 23, 2024
Kubernetes kubelet arbitrary command execution
High
CVE-2024-10220
was published
for
k8s.io/kubernetes
(Go)
Nov 22, 2024
Allegra downloadAttachmentGlobal Directory Traversal Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2023-52334
was published
Nov 22, 2024
Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2023-52332
was published
Nov 22, 2024
Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51647
was published
Nov 22, 2024
Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability. This...
Critical
Unreviewed
CVE-2023-51639
was published
Nov 22, 2024
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-51643
was published
Nov 22, 2024
Allegra saveFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
Critical
Unreviewed
CVE-2023-52333
was published
Nov 22, 2024
Allegra uploadSimpleFile Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51646
was published
Nov 22, 2024
Allegra extarctZippedFile Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2023-51640
was published
Nov 22, 2024
Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability. This...
High
Unreviewed
CVE-2023-51648
was published
Nov 22, 2024
Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-51645
was published
Nov 22, 2024
A path traversal vulnerability has been reported to affect several QNAP operating system versions...
Low
Unreviewed
CVE-2024-37046
was published
Nov 22, 2024
Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-5581
was published
Nov 22, 2024
A path traversal vulnerability has been reported to affect several QNAP operating system versions...
Moderate
Unreviewed
CVE-2024-37043
was published
Nov 22, 2024
GitHub Security Lab (GHSL) Vulnerability Report: Arbitary write GHSL-2023-182
High
CVE-2023-50731
was published
for
mindsdb
(pip)
Dec 15, 2023
OpenStack Nova Directory traversal vulnerability
Moderate
CVE-2012-3360
was published
for
nova
(pip)
May 17, 2022
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52054
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52056
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
High
Unreviewed
CVE-2024-52055
was published
Nov 22, 2024
The pathname of the root directory to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-11303
was published
Nov 18, 2024
Buildah allows arbitrary directory mount
Moderate
CVE-2024-9675
was published
for
github.com/containers/buildah
(Go)
Oct 9, 2024
Unpatched Remote Code Execution in Gogs
High
CVE-2024-44625
was published
for
gogs.io/gogs
(Go)
Nov 15, 2024
ProTip!
Advisories are also available from the
GraphQL API