GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
155 advisories
Filter by severity
Path Traversal in openapi-python-client
Low
CVE-2020-15141
was published
for
openapi-python-client
(pip)
Aug 20, 2020
Directory traversal outside of SENDFILE_ROOT in django-sendfile2
Moderate
GHSA-6r3c-8xf3-ggrr
was published
for
django-sendfile2
(pip)
Jun 24, 2020
Directory Traversal vulnerability in GET/PUT allows attackers to Disclose Information or Write Files via a crafted GET/PUT request
Low
CVE-2020-15239
was published
for
xmpp-http-upload
(pip)
Oct 6, 2020
Remote Code Execution via traversal in TAL expressions
High
GHSA-rpcg-f9q6-2mq6
was published
for
Zope
(pip)
Jun 8, 2021
Remote Code Execution via traversal in TAL expressions
Moderate
GHSA-5pr9-v234-jw36
was published
for
Zope
(pip)
Jun 18, 2021
Path traversal in FreeTAKServer-UI
Moderate
CVE-2022-25511
was published
for
FreeTAKServer-UI
(pip)
Mar 12, 2022
Tooxie Shiva 0.10.0 allows absolute path traversal because Flask send_file function used unsafely
Critical
CVE-2022-31558
was published
for
shiva
(pip)
Jul 12, 2022
ChainerRL Visualizer 0.1.1 vulnerable to Path Traversal via unsafe use of send_file function
Critical
CVE-2022-31573
was published
for
chainerrl-visualizer
(pip)
Jul 12, 2022
Path Traversal in nemo-toolkit
Moderate
CVE-2022-22821
was published
for
nemo-toolkit
(pip)
Jan 11, 2022
Directory Traversal in pyftpdlib
Moderate
CVE-2007-6736
was published
for
pyftpdlib
(pip)
May 1, 2022
Directory traversal in pyftpdlib
Moderate
CVE-2008-7262
was published
for
pyftpdlib
(pip)
May 17, 2022
mat2 before 0.13.0 allows directory traversal during the ZIP archive cleaning process.
Moderate
CVE-2022-35410
was published
for
mat2
(pip)
Jul 12, 2022
Path traversal in Onionshare
Moderate
CVE-2022-21693
was published
for
onionshare-cli
(pip)
Jan 21, 2022
UBI Reader vulnerable to Path Traversal
High
CVE-2022-4572
was published
for
ubi-reader
(pip)
Dec 17, 2022
Streamlit directory traversal vulnerability
Moderate
CVE-2022-35918
was published
for
streamlit
(pip)
Aug 6, 2022
sanic vulnerable to Path Traversal when using `app.static` if using encoded `%2F` URLs
High
CVE-2022-35920
was published
for
sanic
(pip)
Aug 6, 2022
Path Traversal in scout-browser
Moderate
CVE-2022-1554
was published
for
scout-browser
(pip)
May 4, 2022
rdiffweb Path Traversal vulnerability
High
CVE-2022-3389
was published
for
rdiffweb
(pip)
Oct 6, 2022
Maliciously Crafted Model Archive Can Lead To Arbitrary File Write
High
CVE-2021-41127
was published
for
rasa
(pip)
Oct 22, 2021
Pallets Werkzeug vulnerable to Path Traversal
High
CVE-2019-14322
was published
for
werkzeug
(pip)
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API