GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
83 advisories
Filter by severity
Multiple directory traversal vulnerabilities in admin.php3 in PHPMyChat 0.14.5 allow remote...
Low
Unreviewed
CVE-2004-2717
was published
Apr 29, 2022
unalz 0.53 allows user-assisted attackers to overwrite arbitrary files via an ALZ archive with "....
Low
Unreviewed
CVE-2006-0950
was published
May 1, 2022
Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list...
Low
Unreviewed
CVE-2007-1773
was published
May 1, 2022
Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3...
Low
Unreviewed
CVE-2007-4271
was published
May 1, 2022
Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and earlier allows remote...
Low
Unreviewed
CVE-2007-5731
was published
May 1, 2022
Directory traversal vulnerability in index.php in PlutoStatus Locator 1.0 pre alpha allows remote...
Low
Unreviewed
CVE-2008-0819
was published
May 1, 2022
Directory traversal vulnerability in index.php in Scribe 0.2 allows remote attackers to read...
Low
Unreviewed
CVE-2008-0822
was published
May 1, 2022
Absolute path traversal vulnerability in install/index.php in Drake CMS 0.4.11 RC8 allows remote...
Low
Unreviewed
CVE-2008-1371
was published
May 1, 2022
Directory traversal vulnerability in makepost.php in DaZPHPNews 0.1-1, when register_globals is...
Low
Unreviewed
CVE-2008-1696
was published
May 1, 2022
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when register_globals is...
Low
Unreviewed
CVE-2009-0286
was published
May 2, 2022
Multiple directory traversal vulnerabilities in CutePHP CuteNews 1.4.6, when magic_quotes_gpc is...
Low
Unreviewed
CVE-2009-4116
was published
May 2, 2022
Directory traversal vulnerability in the AutartiTarot (com_autartitarot) component 1.0.3 for...
Low
Unreviewed
CVE-2010-0801
was published
May 2, 2022
The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3...
Low
Unreviewed
CVE-2010-0926
was published
May 2, 2022
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat...
Low
Unreviewed
CVE-2005-1918
was published
May 3, 2022
Path traversal vulnerability in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to...
Low
Unreviewed
CVE-2022-28784
was published
May 4, 2022
Absolute path traversal vulnerability in the intu-help-qb (aka Intuit Help System Async Pluggable...
Low
Unreviewed
CVE-2012-2421
was published
May 13, 2022
Leptonica 1.74.4 constructs unintended pathnames (containing duplicated path components) when...
Low
Unreviewed
CVE-2017-18196
was published
May 13, 2022
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal.
Low
Unreviewed
CVE-2018-16968
was published
May 14, 2022
Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03...
Low
Unreviewed
CVE-2011-0345
was published
May 14, 2022
Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage...
Low
Unreviewed
CVE-2015-5313
was published
May 14, 2022
Directory traversal vulnerability in javatester_init.php in IBM Lotus Protector for Mail Security...
Low
Unreviewed
CVE-2012-2202
was published
May 17, 2022
Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows...
Low
Unreviewed
CVE-2014-4384
was published
May 17, 2022
IBM InfoSphere BigInsights before 2.1.0.3 allows remote authenticated users to bypass intended...
Low
Unreviewed
CVE-2013-3993
was published
May 17, 2022
Directory traversal vulnerability in the server in IBM Rational Software Architect Design Manager...
Low
Unreviewed
CVE-2013-3042
was published
May 17, 2022
Directory traversal vulnerability in the client in IBM Rational Software Architect Design Manager...
Low
Unreviewed
CVE-2013-3043
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API