GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
101 advisories
Filter by severity
Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to a directory traversal, which...
Moderate
Unreviewed
CVE-2021-32954
was published
May 24, 2022
mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported...
High
Unreviewed
CVE-2021-43555
was published
May 24, 2022
OFFIS DCMTK's (All versions prior to 3.6.7) service class user (SCU) is vulnerable to relative...
Critical
Unreviewed
CVE-2022-2120
was published
Jun 25, 2022
The affected product is vulnerable to directory traversal, which may allow an attacker to access...
Critical
Unreviewed
CVE-2022-2139
was published
Jul 23, 2022
In some non-default installations of Esri Portal for ArcGIS versions 10.9.1 and below, a...
High
Unreviewed
CVE-2022-38205
was published
Dec 29, 2022
A relative path traversal attack in the B. Braun OnlineSuite Version AP 3.0 and earlier allows...
Critical
Unreviewed
CVE-2020-25172
was published
May 24, 2022
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow...
Moderate
Unreviewed
CVE-2019-19287
was published
May 24, 2022
Carlo Gavazzi UWP3.0 in multiple versions and CPY Car Park Server in Version 2.8.3 was discovered...
Critical
Unreviewed
CVE-2022-28814
was published
Sep 29, 2022
There is a path traversal vulnerability in Esri ArcGIS Server versions 10.9.1 and below....
High
Unreviewed
CVE-2022-38202
was published
Dec 28, 2022
A zip slip vulnerability in XINJE XD/E Series PLC Program Tool up to version v3.5.1 can provide...
High
Unreviewed
CVE-2021-34605
was published
May 12, 2022
A relative path traversal attack in the B. Braun Melsungen AG SpaceCom Version L81/U61 and...
High
Unreviewed
CVE-2020-25150
was published
Apr 15, 2022
A vulnerability was found in MuYuCMS 2.2. It has been classified as problematic. Affected is an...
Moderate
Unreviewed
CVE-2023-1043
was published
Feb 26, 2023
A vulnerability was found in MuYuCMS 2.2. It has been rated as problematic. Affected by this...
High
Unreviewed
CVE-2023-1045
was published
Feb 26, 2023
A vulnerability was found in MuYuCMS 2.2. It has been declared as problematic. Affected by this...
High
Unreviewed
CVE-2023-1044
was published
Feb 26, 2023
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote...
Moderate
Unreviewed
CVE-2023-20066
was published
Mar 23, 2023
Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables...
Moderate
Unreviewed
CVE-2022-2106
was published
Jun 28, 2022
The “restore configuration” feature of Softing Secure Integration Server V1.22 is vulnerable to a...
High
Unreviewed
CVE-2022-1373
was published
Aug 18, 2022
The affected products are vulnerable to directory traversal, which may allow an attacker to...
High
Unreviewed
CVE-2022-1661
was published
Jun 3, 2022
The AGG Software Web Server version 4.0.40.1014 and prior is vulnerable to a path traversal...
Moderate
Unreviewed
CVE-2021-32964
was published
May 25, 2022
** UNSUPPORTED WHEN ASSIGNED ** A post-authentication arbitrary file read vulnerability impacting...
Moderate
Unreviewed
CVE-2022-22279
was published
Apr 14, 2022
A vulnerability was found in Drag and Drop Multiple File Upload Contact Form 7 5.0.6.1. It has...
Critical
Unreviewed
CVE-2023-1112
was published
Mar 1, 2023
Relative Path Traversal in GitHub repository mintplex-labs/anything-llm prior to 0.0.1.
High
Unreviewed
CVE-2023-4897
was published
Sep 11, 2023
A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5...
High
Unreviewed
CVE-2023-42783
was published
Nov 14, 2023
A CWE-23: Relative Path Traversal vulnerability exists in Telit Cinterion BGS5, Telit Cinterion...
Moderate
Unreviewed
CVE-2023-47613
was published
Nov 9, 2023
ProTip!
Advisories are also available from the
GraphQL API