Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,317 advisories

Loading
SPX (aka php-spx) through 0.4.15 allows SPX_UI_URI Directory Traversal to read arbitrary files. Moderate Unreviewed
CVE-2024-42007 was published Jul 26, 2024
A vulnerability was found in SourceCodester Insurance Management System 1.0. It has been declared... Moderate Unreviewed
CVE-2024-7080 was published Jul 24, 2024
A vulnerability classified as problematic was found in Gargaj wuhu up to... Moderate Unreviewed
CVE-2024-6949 was published Jul 21, 2024
The Mercado Pago payments for WooCommerce plugin for WordPress is vulnerable to Path Traversal in... Moderate Unreviewed
CVE-2024-3934 was published Jul 20, 2024
Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a... Moderate Unreviewed
CVE-2024-40617 was published Jul 17, 2024
SeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php. Moderate Unreviewed
CVE-2024-39036 was published Jul 16, 2024
The WordPress File Upload plugin for WordPress is vulnerable to Directory Traversal in all... Moderate Unreviewed
CVE-2024-5852 was published Jul 16, 2024
A vulnerability classified as problematic was found in NaiboWang EasySpider 0.6.2 on Windows.... Moderate Unreviewed
CVE-2024-6746 was published Jul 15, 2024
IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to... Moderate Unreviewed
CVE-2024-39741 was published Jul 15, 2024
StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows Directory Traversal by... Moderate Unreviewed
CVE-2024-31947 was published Jul 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-38716 was published Jul 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-38715 was published Jul 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-38706 was published Jul 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-38709 was published Jul 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-38704 was published Jul 12, 2024
The deploy directory in PingFederate runtime nodes is reachable to unauthorized users. Moderate Unreviewed
CVE-2024-22377 was published Jul 10, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37520 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37464 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37499 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37437 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37410 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37454 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37266 was published Jul 9, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-37547 was published Jul 6, 2024
MyPower vc8100 V100R001C00B030 was discovered to contain an arbitrary file read vulnerability via... Moderate Unreviewed
CVE-2024-39178 was published Jul 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database