Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,084
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

2,823 advisories

Loading
Directory traversal vulnerability in FFFTP 1.96b allows remote FTP servers to create or overwrite... High Unreviewed
CVE-2008-6424 was published May 17, 2022
Path traversal in CureKit High
CVE-2022-23082 was published for io.whitesource:curekit (Maven) Jun 1, 2022
Hitachi Kokusai Electric Inc ISnex HC-IP9100HD Version 1.07 and below allows attackers to perform... High Unreviewed
CVE-2022-37681 was published Aug 30, 2022
An authenticated attacker can upload a file with a filename including “..” and “/” to achieve the... High Unreviewed
CVE-2022-31483 was published Jun 7, 2022
Path Traversal in Git HTTP endpoints in Gogs High
CVE-2022-1993 was published for gogs.io/gogs (Go) Jun 8, 2022
Sim4n6
Directory traversal vulnerability in joomlaflickr.php in the Joomla Flickr (com_joomlaflickr)... High Unreviewed
CVE-2010-1980 was published May 17, 2022
Directory traversal vulnerability in the BeeHeard (com_beeheard) and BeeHeard Lite ... High Unreviewed
CVE-2010-1952 was published May 17, 2022
The Android application HTTP File Server (Version 1.4.1) by 'slowscript' is affected by a path... High Unreviewed
CVE-2021-40668 was published Jun 10, 2022
Directory traversal vulnerability in the Deluxe Blog Factory (com_blogfactory) component 1.1.2... High Unreviewed
CVE-2010-1955 was published May 17, 2022
Multiple directory traversal vulnerabilities in phpKF-Portal 1.10 allow remote attackers to... High Unreviewed
CVE-2008-6516 was published May 17, 2022
Directory traversal vulnerability in the Real Estate Property (com_properties) component 3.1.22... High Unreviewed
CVE-2010-1875 was published May 17, 2022
Directory traversal vulnerability in Cisco Internet Streamer, as used in Cisco Content Delivery... High Unreviewed
CVE-2010-1577 was published May 17, 2022
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows... High Unreviewed
CVE-2010-1531 was published May 17, 2022
Directory traversal vulnerability in the web interface on Cisco RV180 and RV180W devices allows... High Unreviewed
CVE-2016-1429 was published May 17, 2022
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist... High Unreviewed
CVE-2022-29093 was published Jun 11, 2022
Improper Access Control in Jfinal CMS v4.7.1 and earlier allows remote attackers to obtain... High Unreviewed
CVE-2020-19155 was published May 24, 2022
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS... High Unreviewed
CVE-2021-40359 was published May 24, 2022
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to a NUL-terminated... High Unreviewed
CVE-2017-6527 was published May 17, 2022
Directory traversal vulnerability in the web interface on the D-Link DWR-116 device with firmware... High Unreviewed
CVE-2017-6190 was published May 17, 2022
Directory traversal vulnerability in the file import feature in Nuxeo Platform 6.0, 7.1, 7.2, and... High Unreviewed
CVE-2017-5869 was published May 17, 2022
Agentflow BPM file download function has a path traversal vulnerability. An unauthenticated... High Unreviewed
CVE-2022-39037 was published Nov 10, 2022
Arbitrary file deletion exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with... High Unreviewed
CVE-2017-8841 was published May 17, 2022
Multiple directory traversal vulnerabilities in phpCDB 1.0 and earlier allow remote attackers to... High Unreviewed
CVE-2010-1537 was published May 17, 2022
Dell SupportAssist Client Consumer versions (3.10.4 and versions prior) and Dell SupportAssist... High Unreviewed
CVE-2022-29094 was published Jun 11, 2022
Directory traversal in convert-svg-core High
CVE-2022-24278 was published for convert-svg-core (npm) Jun 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database