GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
561 advisories
Filter by severity
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component...
Critical
Unreviewed
CVE-2023-44171
was published
Sep 27, 2023
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component...
Critical
Unreviewed
CVE-2023-44169
was published
Sep 27, 2023
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component...
Critical
Unreviewed
CVE-2023-43216
was published
Sep 27, 2023
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component...
Critical
Unreviewed
CVE-2023-44172
was published
Sep 27, 2023
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component...
Critical
Unreviewed
CVE-2023-44170
was published
Sep 27, 2023
The WooEvents - Calendar and Event Booking plugin for WordPress is vulnerable to arbitrary file...
Critical
Unreviewed
CVE-2024-8671
was published
Sep 24, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Critical
Unreviewed
CVE-2024-7609
was published
Sep 11, 2024
The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that...
Critical
Unreviewed
CVE-2024-8752
was published
Sep 16, 2024
Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10...
Critical
Unreviewed
CVE-2024-33109
was published
Sep 19, 2024
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to...
Critical
Unreviewed
CVE-2024-8963
was published
Sep 19, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the...
Critical
Unreviewed
CVE-2024-46376
was published
Sep 18, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the...
Critical
Unreviewed
CVE-2024-46375
was published
Sep 18, 2024
Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10...
Critical
Unreviewed
CVE-2012-6664
was published
Jun 22, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Critical
Unreviewed
CVE-2024-6445
was published
Sep 6, 2024
The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for...
Critical
Unreviewed
CVE-2024-7950
was published
Sep 4, 2024
An issue in EQ Enterprise Management System before v2.0.0 allows attackers to execute a directory...
Critical
Unreviewed
CVE-2024-44761
was published
Aug 28, 2024
The product allows user input to control or influence paths or file
names that are used in...
Critical
Unreviewed
CVE-2024-3980
was published
Aug 27, 2024
Possible path traversal in Apache OFBiz allowing authentication bypass.
Users are recommended to...
Critical
Unreviewed
CVE-2024-25065
was published
Feb 29, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Critical
Unreviewed
CVE-2024-43955
was published
Aug 29, 2024
An arbitrary file write issue in the exfiltration endpoint in BYOB (Build Your Own Botnet) 2.0...
Critical
Unreviewed
CVE-2024-45256
was published
Aug 26, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability via...
Critical
Unreviewed
CVE-2024-21876
was published
Aug 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability...
Critical
Unreviewed
CVE-2024-21877
was published
Aug 12, 2024
LibreChat through 0.7.4-rc1 does not validate the normalized pathnames of images. (Work on a...
Critical
Unreviewed
CVE-2024-41704
was published
Jul 22, 2024
The Filter & Grids WordPress plugin before 2.8.33 is vulnerable to Local File Inclusion via the...
Critical
Unreviewed
CVE-2024-6164
was published
Jul 18, 2024
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &...
Critical
Unreviewed
CVE-2024-7777
was published
Aug 20, 2024
ProTip!
Advisories are also available from the
GraphQL API