GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,022 advisories
Filter by severity
A vulnerability, which was classified as critical, was found in SourceCodester Simple Forum...
Moderate
Unreviewed
CVE-2024-9032
was published
Sep 20, 2024
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10...
Critical
Unreviewed
CVE-2024-33109
was published
Sep 19, 2024
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to...
Critical
Unreviewed
CVE-2024-8963
was published
Sep 19, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the...
Critical
Unreviewed
CVE-2024-46375
was published
Sep 18, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the...
Critical
Unreviewed
CVE-2024-46376
was published
Sep 18, 2024
An authenticated Path Traversal vulnerabilities exists in the ArubaOS. Successful exploitation of...
High
Unreviewed
CVE-2024-42501
was published
Sep 17, 2024
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13...
High
Unreviewed
CVE-2024-44167
was published
Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS...
High
Unreviewed
CVE-2024-27869
was published
Sep 17, 2024
The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that...
Critical
Unreviewed
CVE-2024-8752
was published
Sep 16, 2024
OMFLOW from The SYSCOM Group does not properly validate user input of the download functionality,...
Moderate
Unreviewed
CVE-2024-8778
was published
Sep 16, 2024
A vulnerability, which was classified as problematic, has been found in xiaohe4966 TpMeCMS up to...
Moderate
Unreviewed
CVE-2024-8876
was published
Sep 16, 2024
A vulnerability classified as critical was found in vedees wcms up to 0.3.2. Affected by this...
Moderate
Unreviewed
CVE-2024-8875
was published
Sep 16, 2024
A vulnerability was found in JFinalCMS up to 1.0. It has been rated as critical. This issue...
Moderate
Unreviewed
CVE-2024-8782
was published
Sep 13, 2024
A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited,...
High
Unreviewed
CVE-2024-7961
was published
Sep 12, 2024
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6. It has been...
Moderate
Unreviewed
CVE-2024-8707
was published
Sep 12, 2024
A vulnerability was found in JFinalCMS up to 20240903. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-8706
was published
Sep 12, 2024
A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. This...
Moderate
Unreviewed
CVE-2024-8694
was published
Sep 11, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Critical
Unreviewed
CVE-2024-7609
was published
Sep 11, 2024
A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet...
Moderate
Unreviewed
CVE-2024-21753
was published
Sep 10, 2024
phpok v3.0 was discovered to contain an arbitrary file read vulnerability via the component ...
High
Unreviewed
CVE-2024-44867
was published
Sep 10, 2024
Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7...
High
Unreviewed
CVE-2024-37728
was published
Sep 10, 2024
nix 2.24 through 2.24.5 allows directory traversal via a symlink in a nar file, because of...
High
Unreviewed
CVE-2024-45845
was published
Sep 10, 2024
SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component admin_safe...
High
Unreviewed
CVE-2024-44720
was published
Sep 9, 2024
Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file...
Moderate
Unreviewed
CVE-2024-8585
was published
Sep 9, 2024
A path traversal vulnerability allows an attacker with a low-privileged account and local access...
High
Unreviewed
CVE-2024-40712
was published
Sep 7, 2024
ProTip!
Advisories are also available from the
GraphQL API