GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,315 advisories
Filter by severity
A vulnerability has been found in Landray EKP up to 16.0 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-11239
was published
Nov 15, 2024
A vulnerability, which was classified as critical, was found in Landray EKP up to 16.0. This...
Moderate
Unreviewed
CVE-2024-11238
was published
Nov 15, 2024
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in...
Moderate
Unreviewed
CVE-2024-42499
was published
Nov 15, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-52396
was published
Nov 14, 2024
A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the...
Moderate
Unreviewed
CVE-2024-11210
was published
Nov 14, 2024
Absolute path traversal (incorrect restriction of a path to a restricted directory) vulnerability...
Moderate
Unreviewed
CVE-2024-11215
was published
Nov 14, 2024
A Directory listing issue was found in PHPGurukul User Registration & Login and User Management...
Moderate
Unreviewed
CVE-2024-50843
was published
Nov 14, 2024
A command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated...
Moderate
Unreviewed
CVE-2024-2552
was published
Nov 14, 2024
Path traversal for some Intel(R) Extension for Transformers software before version 1.5 may allow...
Moderate
Unreviewed
CVE-2024-21799
was published
Nov 13, 2024
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ...
Moderate
Unreviewed
CVE-2024-32117
was published
Nov 12, 2024
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All...
Moderate
Unreviewed
CVE-2024-50559
was published
Nov 12, 2024
A vulnerability, which was classified as problematic, was found in ???????????? Lingdang CRM up...
Moderate
Unreviewed
CVE-2024-11123
was published
Nov 12, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20529
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20532
was published
Nov 6, 2024
A vulnerability in the API of Cisco ISE could allow an authenticated, remote attacker to read and...
Moderate
Unreviewed
CVE-2024-20527
was published
Nov 6, 2024
An authenticated Path Traversal vulnerability exists in Instant AOS-8 and AOS-10. Successful...
Moderate
Unreviewed
CVE-2024-47464
was published
Nov 6, 2024
A vulnerability classified as problematic was found in ESAFENET CDG 5. Affected by this...
Moderate
Unreviewed
CVE-2024-10379
was published
Oct 25, 2024
Sharp and Toshiba Tec MFPs improperly process URI data in HTTP PUT requests resulting in a path...
Moderate
Unreviewed
CVE-2024-45842
was published
Oct 25, 2024
RockOA v2.6.5 is vulnerable to Directory Traversal in webmain/system/beifen/beifenAction.php.
Moderate
Unreviewed
CVE-2024-48213
was published
Oct 24, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ...
Moderate
Unreviewed
CVE-2024-20379
was published
Oct 23, 2024
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the...
Moderate
Unreviewed
CVE-2024-9676
was published
Oct 15, 2024
NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path...
Moderate
Unreviewed
CVE-2024-0129
was published
Oct 15, 2024
The WordPress Comments Import & Export plugin for WordPress is vulnerable to to arbitrary file...
Moderate
Unreviewed
CVE-2024-7514
was published
Oct 11, 2024
In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary...
Moderate
Unreviewed
CVE-2024-47949
was published
Oct 8, 2024
In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was...
Moderate
Unreviewed
CVE-2024-47948
was published
Oct 8, 2024
ProTip!
Advisories are also available from the
GraphQL API