GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,666

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,710 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Directory traversal vulnerability in KGet in KDE SC 4.0.0 through 4.4.3 allows remote attackers... Moderate Unreviewed

CVE-2010-1000 was published Apr 23, 2022

Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote... Moderate Unreviewed

CVE-2011-4350 was published Apr 22, 2022

A vulnerability in the web-based management interface of Cisco Unified Communications Manager ... Moderate Unreviewed

CVE-2022-20790 was published Apr 22, 2022

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... Moderate Unreviewed

CVE-2022-20722 was published Apr 16, 2022

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... Moderate Unreviewed

CVE-2022-20725 was published Apr 16, 2022

Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... Moderate Unreviewed

CVE-2022-20721 was published Apr 16, 2022

** UNSUPPORTED WHEN ASSIGNED ** A post-authentication arbitrary file read vulnerability impacting... Moderate Unreviewed

CVE-2022-22279 was published Apr 14, 2022

A highly privileged remote attacker, can gain unauthorized access to display contents of... Moderate Unreviewed

CVE-2022-27657 was published Apr 13, 2022

A Directory Traversal vulnerability exists in KevinLAB Inc Building Energy Management System 4ST... Moderate Unreviewed

CVE-2021-37293 was published Apr 12, 2022

Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to... Moderate Unreviewed

CVE-2022-28544 was published Apr 12, 2022

Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to... Moderate Unreviewed

CVE-2022-28543 was published Apr 12, 2022

A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow... Moderate Unreviewed

CVE-2021-41026 was published Apr 7, 2022

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote... Moderate Unreviewed

CVE-2022-27248 was published Apr 5, 2022

The JobMonster Theme was vulnerable to Directory Listing in the /wp-content/uploads/jobmonster/... Moderate Unreviewed

CVE-2022-1166 was published Apr 5, 2022

An Archive Extraction (AKA "Zip Slip) vulnerability exists in bbs 5.3 in the UpgradeNow function... Moderate Unreviewed

CVE-2021-43099 was published Mar 30, 2022

The String locator WordPress plugin before 2.5.0 does not properly validate the path of the files... Moderate Unreviewed

CVE-2022-0493 was published Mar 29, 2022

aaPanel v6.8.21 was discovered to be vulnerable to directory traversal. This vulnerability allows... Moderate Unreviewed

CVE-2022-26252 was published Mar 28, 2022

Mendelson OFTP2 before 1.1 b43 is affected by directory traversal. To access the vulnerable code... Moderate Unreviewed

CVE-2022-27906 was published Mar 26, 2022

Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal... Moderate Unreviewed

CVE-2022-25266 was published Mar 25, 2022

The Simple Download Monitor WordPress plugin before 3.9.5 allows users with a role as low as... Moderate Unreviewed

CVE-2021-24692 was published Mar 15, 2022

An issue in index.php of OneNav v0.9.14 allows attackers to perform directory traversal. Moderate Unreviewed

CVE-2022-26276 was published Mar 13, 2022

It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent's (DSA)... Moderate Unreviewed

CVE-2021-42857 was published Mar 11, 2022

Directory traversal vulnerability in pfSense-pkg-WireGuard pfSense-pkg-WireGuard 0.1.5 versions... Moderate Unreviewed

CVE-2022-21132 was published Mar 11, 2022

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2 Patch 600 and... Moderate Unreviewed

CVE-2022-26484 was published Mar 5, 2022

Multiple relative path traversal vulnerabilities [CWE-23] in FortiWLM management interface 8.6.2... Moderate Unreviewed

CVE-2021-43070 was published Mar 3, 2022

Previous 1…107…109 Next

Previous 1 2 … 105 106 107 108 109 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,710 advisories