GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,315 advisories
Filter by severity
It was discovered that on Windows operating systems specifically, Kibana was not validating a...
Moderate
Unreviewed
CVE-2021-37938
was published
Nov 19, 2021
OX App Suite through 7.10.5 allows Directory Traversal via ../ in an OOXML or ODF ZIP archive,...
Moderate
Unreviewed
CVE-2021-33491
was published
Nov 23, 2021
There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of...
Moderate
Unreviewed
CVE-2021-37023
was published
Nov 24, 2021
Auerswald COMpact 5500R devices before 8.2B allow Arbitrary File Disclosure. A sub-admin can read...
Moderate
Unreviewed
CVE-2021-40858
was published
Dec 14, 2021
A vulnerability has been identified in SIMATIC eaSie PCS 7 Skill Package (All versions < V21.00...
Moderate
Unreviewed
CVE-2021-42022
was published
Dec 15, 2021
Specially-crafted command line arguments can lead to arbitrary file deletion. The handle_delete...
Moderate
Unreviewed
CVE-2021-21908
was published
Dec 23, 2021
A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett...
Moderate
Unreviewed
CVE-2021-21907
was published
Dec 23, 2021
A directory traversal vulnerability exists in the Web Manager FsBrowseClean functionality of...
Moderate
Unreviewed
CVE-2021-21896
was published
Dec 23, 2021
A directory traversal vulnerability exists in the Web Manager FSBrowsePage functionality of...
Moderate
Unreviewed
CVE-2021-21886
was published
Dec 23, 2021
Path traversal vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession...
Moderate
Unreviewed
CVE-2021-20876
was published
Dec 25, 2021
An information exposure issue has been discovered in Opmantek Open-AudIT 4.2.0. The vulnerability...
Moderate
Unreviewed
CVE-2021-44674
was published
Jan 4, 2022
The OMGF | Host Google Fonts Locally WordPress plugin before 4.5.12 does not validate the cache...
Moderate
Unreviewed
CVE-2021-25021
was published
Jan 4, 2022
The CAOS | Host Google Analytics Locally WordPress plugin before 4.1.9 does not validate the...
Moderate
Unreviewed
CVE-2021-25020
was published
Jan 4, 2022
CoreFTP Server before 727 allows directory traversal (for file creation) by an authenticated...
Moderate
Unreviewed
CVE-2022-22836
was published
Jan 11, 2022
HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability...
Moderate
Unreviewed
CVE-2021-40003
was published
Jan 11, 2022
The CaasKit module has a path traversal vulnerability. Successful exploitation of this...
Moderate
Unreviewed
CVE-2021-40001
was published
Jan 11, 2022
ChronoForums 2.0.11 allows av Directory Traversal to read arbitrary files.
Moderate
Unreviewed
CVE-2021-28377
was published
Jan 13, 2022
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files.
Moderate
Unreviewed
CVE-2021-28376
was published
Jan 13, 2022
ASUS RT-AX56U’s login function contains a path traversal vulnerability due to its inadequate...
Moderate
Unreviewed
CVE-2022-22054
was published
Jan 15, 2022
Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal...
Moderate
Unreviewed
CVE-2021-41551
was published
Jan 19, 2022
Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path parameter.
Moderate
Unreviewed
CVE-2021-46203
was published
Jan 20, 2022
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2022-22679
was published
Feb 8, 2022
Directory traversal in /northstar/Common/NorthFileManager/fileManagerObjects.jsp Northstar...
Moderate
Unreviewed
CVE-2021-29398
was published
Feb 9, 2022
Directory Traversal vulnerability exists in ZZCMS 2021 via the skin parameter in 1) index.php, 2)...
Moderate
Unreviewed
CVE-2021-45286
was published
Feb 10, 2022
A vulnerability has been identified in COMOS (All versions < V10.4.1). The COMOS Web component of...
Moderate
Unreviewed
CVE-2021-37196
was published
Feb 10, 2022
ProTip!
Advisories are also available from the
GraphQL API