GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,977
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,058
Maven 5,239
npm 3,742
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,425

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,260 advisories

Filter by severity

Sort by

Least recently updated

iXsystems TrueNAS CORE tarfile.extractall Directory Traversal Remote Code Execution Vulnerability... High Unreviewed

CVE-2024-11944 was published Dec 30, 2024

An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35, 7.10.x through 7.10.0.18,... High Unreviewed

CVE-2024-54453 was published Dec 27, 2024

ColdFusion versions 2023.11, 2021.17 and earlier are affected by an Improper Limitation of a... High Unreviewed

CVE-2024-53961 was published Dec 23, 2024

A logic issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.1.... High Unreviewed

CVE-2024-44195 was published Dec 20, 2024

Arista NG Firewall custom_handler Directory Traversal Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12830 was published Dec 20, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54374 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54375 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54373 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-54380 was published Dec 16, 2024

File Manager in Syncfusion Essential Studio for ASP.NET MVC before 27.1.55 has a traversal issue... High Unreviewed

CVE-2024-55970 was published Dec 15, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11833 was published Dec 13, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11834 was published Dec 13, 2024

A path handling issue was addressed with improved validation. This issue is fixed in macOS... High Unreviewed

CVE-2024-54489 was published Dec 12, 2024

An issue was discovered in Digi ConnectPort LTS before 1.4.12. A Directory Traversal... High Unreviewed

CVE-2024-50626 was published Dec 10, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-53790 was published Dec 9, 2024

The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to... High Unreviewed

CVE-2024-11010 was published Dec 7, 2024

The Swift Performance Lite plugin for WordPress is vulnerable to Local PHP File Inclusion in all... High Unreviewed

CVE-2024-10516 was published Dec 6, 2024

The WP Hide & Security Enhancer plugin for WordPress is vulnerable to arbitrary file contents... High Unreviewed

CVE-2024-11585 was published Dec 6, 2024

JSFinder commit d70ab9bc5221e016c08cffaf0d9ac79646c90645 is vulnerable to Directory Traversal in... High Unreviewed

CVE-2024-53523 was published Dec 5, 2024

Favorites-web 1.3.0 favorites-web has a directory traversal vulnerability in SecurityFilter.java. High Unreviewed

CVE-2024-53490 was published Dec 5, 2024

The Classic Addons – WPBakery Page Builder plugin for WordPress is vulnerable to Limited Local... High Unreviewed

CVE-2024-11952 was published Dec 4, 2024

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-11398 was published Dec 4, 2024

A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API.... High Unreviewed

CVE-2024-11481 was published Nov 29, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-52481 was published Nov 28, 2024

The File Manager Pro – Filester plugin for WordPress is vulnerable to Local JavaScript File... High Unreviewed

CVE-2024-9669 was published Nov 28, 2024

Previous 1 2 3 4 5 … 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,260 advisories