GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,317 advisories

Filter by severity

Sort by

Least recently updated

IBM MQ Appliance 9.3 LTS and 9.3 CD could allow a remote attacker to traverse directories on the... Moderate Unreviewed

CVE-2023-46177 was published Dec 18, 2023

A vulnerability, which was classified as critical, has been found in rmountjoy92 DashMachine 0.5... Moderate Unreviewed

CVE-2023-6900 was published Dec 17, 2023

A vulnerability was found in Hikvision Intercom Broadcasting System 3.0.3_20201113_RELEASE(HIK)... Moderate Unreviewed

CVE-2023-6893 was published Dec 17, 2023

Softnext Mail SQR Expert is an email management platform, it has a Local File Inclusion (LFI)... Moderate Unreviewed

CVE-2023-48381 was published Dec 15, 2023

Softnext Mail SQR Expert is an email management platform, it has a Local File Inclusion (LFI)... Moderate Unreviewed

CVE-2023-48382 was published Dec 15, 2023

Dell PowerProtect DD , versions prior to 7.13.0.10, LTS 7.7.5.25, LTS 7.10.1.15, 6.2.1.110 ... Moderate Unreviewed

CVE-2023-44278 was published Dec 14, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Moderate Unreviewed

CVE-2023-6407 was published Dec 14, 2023

Directory traversal in the log-download REST API endpoint in ProLion CryptoSpike 3.0.15P2 allows... Moderate Unreviewed

CVE-2023-36654 was published Dec 12, 2023

The Welcart e-Commerce plugin for WordPress is vulnerable to Directory Traversal in all versions... Moderate Unreviewed

CVE-2023-6120 was published Dec 9, 2023

A vulnerability was found in Beijing Baichuo PatrolFlow 2530Pro up to 20231126. It has been rated... Moderate Unreviewed

CVE-2023-6577 was published Dec 7, 2023

The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an... Moderate Unreviewed

CVE-2023-5105 was published Dec 5, 2023

Dell DM5500 contains a path traversal vulnerability in PPOE Component. A remote attacker with... Moderate Unreviewed

CVE-2023-44306 was published Dec 4, 2023

Absolute path traversal vulnerability in the Systematica SMTP Adapter component (up to v2.0.1.101... Moderate Unreviewed

CVE-2021-35975 was published Dec 1, 2023

The default configuration of Aquaforest TIFF Server allows access to arbitrary file paths,... Moderate Unreviewed

CVE-2023-6352 was published Nov 30, 2023

The discontinued FFS Colibri product allows a remote user to access files on the system including... Moderate Unreviewed

CVE-2023-5885 was published Nov 28, 2023

Arcserve UDP prior to 9.2 contains a path traversal vulnerability in com.ca.arcflash.ui.server... Moderate Unreviewed

CVE-2023-42000 was published Nov 27, 2023

A vulnerability classified as critical was found in jeecgboot JimuReport up to 1.6.1. Affected by... Moderate Unreviewed

CVE-2023-6307 was published Nov 27, 2023

Path traversal vulnerability whose exploitation could allow an authenticated remote user to... Moderate Unreviewed

CVE-2023-4593 was published Nov 23, 2023

Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to directory traversal via the... Moderate Unreviewed

CVE-2023-6265 was published Nov 22, 2023

In mprivacy-tools before 2.0.406g in m-privacy TightGate-Pro Server, a Directory Traversal in the... Moderate Unreviewed

CVE-2023-47251 was published Nov 22, 2023

Headwind MDM Web panel 5.22.1 is vulnerable to Directory Traversal. Moderate Unreviewed

CVE-2023-47313 was published Nov 22, 2023

Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../"... Moderate Unreviewed

CVE-2023-6209 was published Nov 21, 2023

Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated... Moderate Unreviewed

CVE-2023-47283 was published Nov 17, 2023

Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated... Moderate Unreviewed

CVE-2023-42428 was published Nov 17, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Moderate Unreviewed

CVE-2023-6032 was published Nov 15, 2023

Previous 1 2 … 9 10 11 12 13 … 92 93 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,317 advisories