GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,018
Composer 4,300
Erlang 31
GitHub Actions 21
Go 2,069
Maven 5,241
npm 3,744
NuGet 668
pip 3,429
Pub 12
RubyGems 892
Rust 880
Swift 36

Unreviewed advisories

All unreviewed 240,346

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,341 advisories

Filter by severity

Sort by

Least recently updated

The InfiniteWP Client plugin for WordPress is vulnerable to Path Traversal in all versions up to,... Moderate Unreviewed

CVE-2024-10585 was published Jan 8, 2025

Path traversal vulnerability in the Medialibrary module Impact: Successful exploitation of this... Moderate Unreviewed

CVE-2023-52953 was published Jan 8, 2025

An attacker who successfully exploited these vulnerabilities could grant read access to files. A... Moderate Unreviewed

CVE-2024-12429 was published Jan 7, 2025

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker... Moderate Unreviewed

CVE-2024-41765 was published Jan 4, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-56248 was published Jan 2, 2025

In WhatsUp Gold versions released before 2024.0.2, an authenticated user can use a specially... Moderate Unreviewed

CVE-2024-12105 was published Dec 31, 2024

An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18.... Moderate Unreviewed

CVE-2024-54452 was published Dec 27, 2024

The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is... Moderate Unreviewed

CVE-2024-12850 was published Dec 24, 2024

A vulnerability, which was classified as problematic, has been found in PbootCMS up to 5.2.3.... Moderate Unreviewed

CVE-2024-12793 was published Dec 19, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-54382 was published Dec 16, 2024

A vulnerability was found in InvoicePlane up to 1.6.1. It has been classified as problematic.... Moderate Unreviewed

CVE-2024-12362 was published Dec 16, 2024

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2024-54259 was published Dec 13, 2024

An issue was discovered in GitLab affecting all versions starting 15.2 to 17.4.6, 17.5 prior to... Moderate Unreviewed

CVE-2024-8647 was published Dec 12, 2024

Windows File Explorer Information Disclosure Vulnerability Moderate Unreviewed

CVE-2024-49082 was published Dec 12, 2024

A vulnerability was found in cjbi wetech-cms 1.0/1.1/1.2. It has been rated as problematic.... Moderate Unreviewed

CVE-2024-12482 was published Dec 12, 2024

Mitel MiCollab through 9.8 SP2 could allow an authenticated attacker with administrative... Moderate Unreviewed

CVE-2024-55550 was published Dec 10, 2024

SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability... Moderate Unreviewed

CVE-2024-45709 was published Dec 10, 2024

In OpenBSD 7.5 before errata 009 and OpenBSD 7.4 before errata 022, exclude any '/' in readdir... Moderate Unreviewed

CVE-2024-10933 was published Dec 5, 2024

An issue in the action_listcategories() function of Sangoma Asterisk v22/22.0.0/22.0.0-rc1/22.0.0... Moderate Unreviewed

CVE-2024-53566 was published Dec 2, 2024

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress... Moderate Unreviewed

CVE-2024-11219 was published Nov 27, 2024

A path traversal vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed

CVE-2024-37043 was published Nov 22, 2024

Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an... Moderate Unreviewed

CVE-2024-52054 was published Nov 22, 2024

Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an... Moderate Unreviewed

CVE-2024-52056 was published Nov 22, 2024

A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This... Moderate Unreviewed

CVE-2024-11239 was published Nov 15, 2024

A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This... Moderate Unreviewed

CVE-2024-11238 was published Nov 15, 2024

Previous 1 2 3 4 5 … 93 94 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,341 advisories