GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,259 advisories
Filter by severity
iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability...
High
Unreviewed
CVE-2024-11944
was published
Dec 30, 2024
ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a...
High
Unreviewed
CVE-2024-53961
was published
Dec 23, 2024
A logic issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.1....
High
Unreviewed
CVE-2024-44195
was published
Dec 20, 2024
Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-12830
was published
Dec 20, 2024
A directory traversal vulnerability exists in the log files download functionality of Veertu Anka...
High
Unreviewed
CVE-2024-41922
was published
Oct 3, 2024
A directory traversal vulnerability exists in the archive download functionality of Veertu Anka...
High
Unreviewed
CVE-2024-41163
was published
Oct 3, 2024
jfinal CMS 5.1.0 has an arbitrary file read vulnerability.
High
Unreviewed
CVE-2023-34645
was published
Jun 16, 2023
A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0...
High
Unreviewed
CVE-2023-42791
was published
Feb 20, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-11834
was published
Dec 13, 2024
File Manager in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 has a traversal issue...
High
Unreviewed
CVE-2024-55970
was published
Dec 15, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-54373
was published
Dec 16, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-54380
was published
Dec 16, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-54374
was published
Dec 16, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-54375
was published
Dec 16, 2024
In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions ...
High
Unreviewed
CVE-2024-27199
was published
Mar 4, 2024
A path handling issue was addressed with improved validation. This issue is fixed in macOS...
High
Unreviewed
CVE-2024-54489
was published
Dec 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-11833
was published
Dec 13, 2024
An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal...
High
Unreviewed
CVE-2024-50626
was published
Dec 10, 2024
JSFinder commit d70ab9bc5221e016c08cffaf0d9ac79646c90645 is vulnerable to Directory Traversal in...
High
Unreviewed
CVE-2024-53523
was published
Dec 5, 2024
Favorites-web 1.3.0 favorites-web has a directory traversal vulnerability in SecurityFilter.java.
High
Unreviewed
CVE-2024-53490
was published
Dec 5, 2024
Path traversal vulnerability in the Bluetooth-based sharing module.
Impact: Successful...
High
Unreviewed
CVE-2024-30417
was published
Apr 7, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-53790
was published
Dec 9, 2024
The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-11010
was published
Dec 7, 2024
The Swift Performance Lite plugin for WordPress is vulnerable to Local PHP File Inclusion in all...
High
Unreviewed
CVE-2024-10516
was published
Dec 6, 2024
The WP Hide & Security Enhancer plugin for WordPress is vulnerable to arbitrary file contents...
High
Unreviewed
CVE-2024-11585
was published
Dec 6, 2024
ProTip!
Advisories are also available from the
GraphQL API