GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,160 advisories
Filter by severity
The WPLMS Learning Management System for WordPress, WordPress LMS theme for WordPress is...
Critical
Unreviewed
CVE-2024-10470
was published
Nov 9, 2024
The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file...
High
Unreviewed
CVE-2024-10626
was published
Nov 9, 2024
The WooCommerce Support Ticket System plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-10625
was published
Nov 9, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to upload...
Low
Unreviewed
CVE-2024-20528
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20532
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20527
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20529
was published
Nov 6, 2024
An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful...
Moderate
Unreviewed
CVE-2024-47464
was published
Nov 6, 2024
In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal vulnerability could allow an...
High
Unreviewed
CVE-2024-47253
was published
Nov 5, 2024
Path Traversal: '.../...//' vulnerability in ThimPress WP Hotel Booking allows PHP Local File...
High
Unreviewed
CVE-2024-51582
was published
Nov 4, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-37108
was published
Nov 1, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-37423
was published
Nov 1, 2024
Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path...
Critical
Unreviewed
CVE-2024-39332
was published
Oct 31, 2024
An issue was discovered in Ollama before 0.1.46. It exposes which files exist on the server on...
High
Unreviewed
CVE-2024-39722
was published
Oct 31, 2024
Directory Traversal in /SASStudio/sasexec/sessions/{sessionID}/workspace/{InternalPath} in SAS...
High
Unreviewed
CVE-2024-48735
was published
Oct 30, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-50508
was published
Oct 30, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-50509
was published
Oct 30, 2024
An arbitrary file read vulnerability exists in gaizhenbiao/chuanhuchatgpt version 20240628 due to...
High
Unreviewed
CVE-2024-7962
was published
Oct 29, 2024
A path traversal vulnerability exists in the latest version of gaizhenbiao/chuanhuchatgpt. The...
Critical
Unreviewed
CVE-2024-5982
was published
Oct 29, 2024
A path deletion vulnerability was addressed by preventing vulnerable code from running with...
High
Unreviewed
CVE-2024-44159
was published
Oct 28, 2024
A path handling issue was addressed with improved logic. This issue is fixed in visionOS 2.1, iOS...
High
Unreviewed
CVE-2024-44255
was published
Oct 28, 2024
Path transversal in some Intel(R) VROC software before version 8.0.8.1001 may allow an...
High
Unreviewed
CVE-2023-35003
was published
Oct 28, 2024
An arbitrary file upload vulnerability in MangoOS before 5.1.4 and Mango API before 4.5.5 allows...
Critical
Unreviewed
CVE-2024-37847
was published
Oct 25, 2024
A vulnerability classified as problematic was found in ESAFENET CDG 5. Affected by this...
Moderate
Unreviewed
CVE-2024-10379
was published
Oct 25, 2024
In sm_mem_compat_get_vmm_obj of lib/sm/shared_mem.c, there is a possible arbitrary physical...
High
Unreviewed
CVE-2024-47027
was published
Oct 25, 2024
ProTip!
Advisories are also available from the
GraphQL API