Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,262
Erlang
31
GitHub Actions
21
Go
2,030
Maven
5,000+
npm
3,732
NuGet
662
pip
3,409
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,244 advisories

Loading
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend... High Unreviewed
CVE-2022-28058 was published Apr 27, 2022
Verydows v2.0 was discovered to contain an arbitrary file deletion vulnerability via \backend... High Unreviewed
CVE-2022-28059 was published Apr 27, 2022
HongCMS 3.0.0 allows arbitrary file deletion via the component /admin/index.php/template/ajax... High Unreviewed
CVE-2022-28523 was published Apr 27, 2022
dhcms v20170919 was discovered to contain an arbitrary folder deletion vulnerability via /admin... High Unreviewed
CVE-2022-28527 was published Apr 27, 2022
There is a Directory Traversal vulnerability in Artica Proxy (4.30.000000 SP206 through SP255,... High Unreviewed
CVE-2021-40680 was published Apr 26, 2022
The Videos sync PDF WordPress plugin through 1.7.4 does not validate the p parameter before using... High Unreviewed
CVE-2022-1392 was published Apr 26, 2022
A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. This may allow access... High Unreviewed
CVE-2021-35250 was published Apr 26, 2022
UCMS v1.6 was discovered to contain an arbitrary file read vulnerability. High Unreviewed
CVE-2022-28444 was published Apr 22, 2022
Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync... High Unreviewed
CVE-2022-24424 was published Apr 22, 2022
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss... High Unreviewed
CVE-2010-5335 was published Apr 21, 2022
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss... High Unreviewed
CVE-2010-5334 was published Apr 21, 2022
Multiple directory traversal and buffer overflow vulnerabilities were discovered in yTNEF, and in... High Unreviewed
CVE-2009-3721 was published Apr 21, 2022
Zoo 2.10-27 has Directory traversal High Unreviewed
CVE-2005-2349 was published Apr 21, 2022
The affected product is vulnerable to a network-based attack by threat actors utilizing crafted... High Unreviewed
CVE-2021-43988 was published Apr 21, 2022
In Citrix XenMobile Server through 10.12 RP9, there is an Authenticated Directory Traversal... High Unreviewed
CVE-2021-44519 was published Apr 20, 2022
The Simple File List WordPress plugin is vulnerable to Arbitrary File Download via the eeFile... High Unreviewed
CVE-2022-1119 was published Apr 20, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20677 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20718 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20724 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20723 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20720 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20719 was published Apr 16, 2022
Yearning versions 2.3.1 and 2.3.2 Interstellar GA and 2.3.4 - 2.3.6 Neptune is vulnerable to... High Unreviewed
CVE-2022-27043 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20726 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... High Unreviewed
CVE-2022-20727 was published Apr 16, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database