GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,704
Composer 4,237
Erlang 31
GitHub Actions 20
Go 2,000
Maven 5,183
npm 3,711
NuGet 661
pip 3,383
Pub 11
RubyGems 885
Rust 849
Swift 36

Unreviewed advisories

All unreviewed 235,477

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

585 advisories

Filter by severity

Sort by

Least recently updated

In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an attacker could use URL... Critical Unreviewed

CVE-2023-1142 was published Mar 27, 2023

An issue in the component /network_config/nsg_masq.cgi of DCN (Digital China Networks) DCBI... Critical Unreviewed

CVE-2023-26802 was published Mar 26, 2023

A path traversal exists when processing a message in Rockwell Automation's ThinManager ThinServer... Critical Unreviewed

CVE-2023-27855 was published Mar 22, 2023

A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk... Critical Unreviewed

CVE-2023-1467 was published Mar 17, 2023

In Stellarium through 1.2, attackers can write to files that are typically unintended, such as... Critical Unreviewed

CVE-2023-28371 was published Mar 15, 2023

SAP NetWeaver AS for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740, 750, 751, 752,... Critical Unreviewed

CVE-2023-27501 was published Mar 14, 2023

SAP NetWeaver Application Server for ABAP and ABAP Platform - versions 700, 701, 702, 731, 740,... Critical Unreviewed

CVE-2023-27269 was published Mar 14, 2023

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before... Critical Unreviewed

CVE-2021-33353 was published Mar 9, 2023

Path traversal vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1... Critical Unreviewed

CVE-2023-22336 was published Mar 6, 2023

A vulnerability was found in Drag and Drop Multiple File Upload Contact Form 7 5.0.6.1. It has... Critical Unreviewed

CVE-2023-1112 was published Mar 1, 2023

Relative Path Traversal vulnerability in ForgeRock Access Management Java Policy Agent allows... Critical Unreviewed

CVE-2023-0511 was published Feb 28, 2023

Relative Path Traversal vulnerability in ForgeRock Access Management Web Policy Agent allows... Critical Unreviewed

CVE-2023-0339 was published Feb 28, 2023

Path Traversal in GitHub repository flatpressblog/flatpress prior to 1.3. Critical Unreviewed

CVE-2023-0947 was published Feb 22, 2023

Sunlogin Sunflower Simplified (aka Sunflower Simple and Personal) 1.0.1.43315 is vulnerable to a... Critical Unreviewed

CVE-2022-48323 was published Feb 13, 2023

Relative Path Traversal vulnerability in YugaByte, Inc. Yugabyte Managed ... Critical Unreviewed

CVE-2023-0745 was published Feb 9, 2023

Directory Traversal vulnerability in AdminLTE 3.1.0 allows remote attackers to gain escalated... Critical Unreviewed

CVE-2021-36471 was published Feb 8, 2023

Directory Traversal vulnerability in Cloud Disk in ASUS RT-AC68U router firmware version before 3... Critical Unreviewed

CVE-2021-37317 was published Feb 3, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Critical Unreviewed

CVE-2022-0223 was published Jan 31, 2023

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Critical Unreviewed

CVE-2022-22731 was published Jan 31, 2023

There is a Path Traversal that leads to a Local File Inclusion in Pandora FMS v764. A function is... Critical Unreviewed

CVE-2022-43979 was published Jan 28, 2023

An issue was discovered in the default configuration of ChinaMobile PLC Wireless Router model... Critical Unreviewed

CVE-2020-18330 was published Jan 26, 2023

Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running... Critical Unreviewed

CVE-2020-18331 was published Jan 26, 2023

A vulnerability in the FTP service of Western Digital My Cloud OS 5 devices running firmware... Critical Unreviewed

CVE-2022-29844 was published Jan 26, 2023

The vRealize Log Insight contains a Directory Traversal Vulnerability. An unauthenticated,... Critical Unreviewed

CVE-2022-31706 was published Jan 26, 2023

The Images Optimize and Upload CF7 WordPress plugin through 2.1.4 does not validate the file to... Critical Unreviewed

CVE-2022-4101 was published Jan 16, 2023

Previous 1 2 … 6 7 8 9 10 … 23 24 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

585 advisories