GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,317 advisories
Filter by severity
A path traversal vulnerability has been reported to affect several QNAP operating system versions...
Moderate
Unreviewed
CVE-2024-37043
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52054
was published
Nov 22, 2024
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an...
Moderate
Unreviewed
CVE-2024-52056
was published
Nov 22, 2024
MyPower vc8100 V100R001C00B030 was discovered to contain an arbitrary file read vulnerability via...
Moderate
Unreviewed
CVE-2024-39178
was published
Jul 5, 2024
An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to...
Moderate
Unreviewed
CVE-2024-42680
was published
Aug 15, 2024
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This...
Moderate
Unreviewed
CVE-2024-11238
was published
Nov 15, 2024
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-11239
was published
Nov 15, 2024
A Directory listing issue was found in PHPGurukul User Registration & Login and User Management...
Moderate
Unreviewed
CVE-2024-50843
was published
Nov 14, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-52396
was published
Nov 14, 2024
Absolute path traversal (incorrect restriction of a path to a restricted directory) vulnerability...
Moderate
Unreviewed
CVE-2024-11215
was published
Nov 14, 2024
A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the...
Moderate
Unreviewed
CVE-2024-11210
was published
Nov 14, 2024
A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated...
Moderate
Unreviewed
CVE-2024-2552
was published
Nov 14, 2024
Path traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow...
Moderate
Unreviewed
CVE-2024-21799
was published
Nov 13, 2024
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the...
Moderate
Unreviewed
CVE-2024-9676
was published
Oct 15, 2024
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ...
Moderate
Unreviewed
CVE-2024-32117
was published
Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All...
Moderate
Unreviewed
CVE-2024-50559
was published
Nov 12, 2024
A vulnerability, which was classified as problematic, was found in ???????????? Lingdang CRM up...
Moderate
Unreviewed
CVE-2024-11123
was published
Nov 12, 2024
An issue in EnvisionWare Computer Access & Reservation Control SelfCheck v1.0 (fixed in OneStop 3...
Moderate
Unreviewed
CVE-2024-37825
was published
Jun 24, 2024
Marinus Pfund, member of the AXIS OS Bug Bounty Program,
has found the VAPIX API ledlimit.cgi...
Moderate
Unreviewed
CVE-2024-0067
was published
Sep 10, 2024
An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal (via a...
Moderate
Unreviewed
CVE-2024-33870
was published
Jul 3, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20529
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20527
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20532
was published
Nov 6, 2024
An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful...
Moderate
Unreviewed
CVE-2024-47464
was published
Nov 6, 2024
A vulnerability in the file upload functionality of Cisco AppDynamics Controller could allow an...
Moderate
Unreviewed
CVE-2024-20345
was published
Mar 6, 2024
ProTip!
Advisories are also available from the
GraphQL API