Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,809 advisories

Loading
Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to... High Unreviewed
CVE-2022-26233 was published Apr 5, 2022
aEnrich a+HRD has inadequate filtering for special characters in URLs. An unauthenticated remote... High Unreviewed
CVE-2022-26675 was published Apr 8, 2022
ASUS RT-AX56U’s update_PLC/PORT file has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23971 was published Apr 8, 2022
Ivanti Avalanche (Premise) 6.3.2 allows remote unauthenticated users to read arbitrary files via... High Unreviewed
CVE-2021-30497 was published Apr 7, 2022
The rc-httpd component through 2022-03-31 for 9front (Plan 9 fork) allows ..%2f directory... High Unreviewed
CVE-2022-28380 was published Apr 4, 2022
Path Traversal in Caucho Resin High
CVE-2021-44138 was published for com.caucho:resin (Maven) Apr 5, 2022
ASUS RT-AX56U’s update_json function has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23970 was published Apr 8, 2022
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain... High Unreviewed
CVE-2022-27279 was published Apr 11, 2022
A path traversal vulnerability was identified in GitHub Enterprise Server management console that... High Unreviewed
CVE-2022-23732 was published Apr 6, 2022
A vulnerability was found in jLEMS. It has been declared as critical. Affected by this... High Unreviewed
CVE-2022-4583 was published Dec 17, 2022
Improper access control and path traversal vulnerability in StroageManager and... High Unreviewed
CVE-2022-27836 was published Apr 12, 2022
Insecure handling of a download function leads to disclosure of internal files due to path... High Unreviewed
CVE-2021-46417 was published Apr 8, 2022
RiteCMS version 3.1.0 and below suffers from an arbitrary file overwrite via path traversal... High Unreviewed
CVE-2022-24247 was published Apr 13, 2022
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a... High Unreviewed
CVE-2021-43289 was published Apr 15, 2022
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal)... High Unreviewed
CVE-2021-22797 was published Apr 14, 2022
Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function... High Unreviewed
CVE-2022-28052 was published Apr 14, 2022
Arbitrary File Read vulnerability in WPvivid Team Migration, Backup, Staging – WPvivid (WordPress... High Unreviewed
CVE-2022-27844 was published Apr 12, 2022
Yearning versions 2.3.1 and 2.3.2 Interstellar GA and 2.3.4 - 2.3.6 Neptune is vulnerable to... High Unreviewed
CVE-2022-27043 was published Apr 16, 2022
RiteCMS version 3.1.0 and below suffers from an arbitrary file deletion via path traversal... High Unreviewed
CVE-2022-24248 was published Apr 13, 2022
In Citrix XenMobile Server through 10.12 RP9, there is an Authenticated Directory Traversal... High Unreviewed
CVE-2021-44519 was published Apr 20, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20727 was published Apr 16, 2022
UCMS v1.6 was discovered to contain an arbitrary file read vulnerability. High Unreviewed
CVE-2022-28444 was published Apr 22, 2022
The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using... High Unreviewed
CVE-2022-1392 was published Apr 26, 2022
Multiple directory traversal and buffer overflow vulnerabilities were discovered in yTNEF, and in... High Unreviewed
CVE-2009-3721 was published Apr 21, 2022
There is a Directory Traversal vulnerability in Artica Proxy (4.30.000000 SP206 through SP255,... High Unreviewed
CVE-2021-40680 was published Apr 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database