Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

6,273 advisories

Loading
Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability. This... High Unreviewed
CVE-2023-52332 was published Nov 22, 2024
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2023-51643 was published Nov 22, 2024
Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2023-51647 was published Nov 22, 2024
Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability. This... Critical Unreviewed
CVE-2023-51639 was published Nov 22, 2024
SMARTBEAR SoapUI unpackageAll Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-7565 was published Nov 23, 2024
The MP3 Sticky Player plugin for WordPress is vulnerable to Directory Traversal in all versions... High Unreviewed
CVE-2024-10803 was published Nov 23, 2024
A vulnerability, which was classified as critical, has been found in eNMS up to 4.2. Affected by... High Unreviewed
CVE-2024-11664 was published Nov 25, 2024
Directory Traversal vulnerability in codesiddhant Jasmin Ransomware v.1.0.1 allows an attacker to... Moderate Unreviewed
CVE-2024-30851 was published May 3, 2024
DotNetZip Directory Traversal vulnerability High
CVE-2024-48510 was published for DotNetZip (NuGet) Nov 13, 2024
Foorcee
Agnai vulnerable to Remote Code Execution via JS Upload using Directory Traversal Critical
CVE-2024-47169 was published for agnai (npm) Sep 26, 2024
ropwareJB noe233
Agnai File Disclosure Vulnerability: JSON via Path Traversal Low
CVE-2024-47170 was published for agnai (npm) Sep 26, 2024
ropwareJB noe233
Agnai vulnerable to Relative Path Traversal in Image Upload Low
CVE-2024-47171 was published for agnai (npm) Sep 26, 2024
ropwareJB noe233
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the... Moderate Unreviewed
CVE-2024-9676 was published Oct 15, 2024
Improper processing of some parameters of installed_emanual_list.html leads to a path traversal... High Unreviewed
CVE-2024-33605 was published Nov 26, 2024
A vulnerability in the sfmgr daemon of Cisco Firepower Management Center (FMC) Software and Cisco... High Unreviewed
CVE-2020-3550 was published May 24, 2022
Path traveral in Streamlit on windows Moderate
CVE-2024-42474 was published for streamlit (pip) Aug 12, 2024
nvn1729
The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress... Moderate Unreviewed
CVE-2024-11219 was published Nov 27, 2024
DedeBIZ v6.3.0 was discovered to contain an arbitrary file deletion vulnerability via the... Critical Unreviewed
CVE-2024-52771 was published Nov 20, 2024
libre-chat Path Traversal vulnerability Moderate
CVE-2024-52787 was published for libre-chat (pip) Nov 25, 2024
Jenkins Filesystem List Parameter Plugin has Path Traversal vulnerability Moderate
CVE-2024-54004 was published for aendter.jenkins.plugins:filesystem-list-parameter-plugin (Maven) Nov 27, 2024
Kubernetes kubelet arbitrary command execution High
CVE-2024-10220 was published for k8s.io/kubernetes (Go) Nov 22, 2024
The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers... Low Unreviewed
CVE-2024-46939 was published Nov 28, 2024
A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware... High Unreviewed
CVE-2024-11667 was published Nov 27, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database