GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,006
Composer 4,299
Erlang 31
GitHub Actions 21
Go 2,065
Maven 5,241
npm 3,744
NuGet 668
pip 3,425
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 240,043

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

53 advisories

Filter by severity

Sort by

Least recently updated

Path Traversal vulnerability in SMSA Express SMSA Shipping allows Path Traversal.This issue... High Unreviewed

CVE-2024-49249 was published Jan 7, 2025

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue... Critical Unreviewed

CVE-2024-56045 was published Dec 31, 2024

Path Traversal: '.../...//' vulnerability in DeluxeThemes Userpro allows Path Traversal.This... High Unreviewed

CVE-2024-56214 was published Dec 31, 2024

Path Traversal: '.../...//' vulnerability in Themewinter Eventin allows Path Traversal.This issue... Moderate Unreviewed

CVE-2024-56213 was published Dec 31, 2024

Some Huawei home music system products have a path traversal vulnerability. Successful... High Unreviewed

CVE-2023-7263 was published Dec 28, 2024

Huawei Home Music System has a path traversal vulnerability. Successful exploitation of this... High Unreviewed

CVE-2023-7300 was published Dec 26, 2024

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue... High Unreviewed

CVE-2024-56049 was published Dec 18, 2024

Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue... High Unreviewed

CVE-2024-56055 was published Dec 18, 2024

Path Traversal vulnerability in FULL. FULL Customer allows Path Traversal.This issue affects FULL... Moderate Unreviewed

CVE-2024-54313 was published Dec 13, 2024

ComfyUI-Impact-Pack is vulnerable to Path Traversal. The issue stems from missing validation of... Critical Unreviewed

CVE-2024-21575 was published Dec 12, 2024

Path Traversal vulnerability in NotFound ARForms allows Path Traversal.This issue affects ARForms... High Unreviewed

CVE-2024-54216 was published Dec 6, 2024

Path Traversal: '.../...//' vulnerability in Softpulse Infotech SP Blog Designer allows PHP Local... High Unreviewed

CVE-2024-52498 was published Nov 28, 2024

The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to Directory... Moderate Unreviewed

CVE-2024-10857 was published Nov 26, 2024

The back-end does not sufficiently verify the user-controlled filename parameter which makes it... High Unreviewed

CVE-2024-50054 was published Nov 23, 2024

Path Traversal: '.../...//' vulnerability in Corporate Zen Contact Page With Google Map allows... High Unreviewed

CVE-2024-52447 was published Nov 20, 2024

: Path Traversal: '.../...//' vulnerability in CYAN Backup allows Path Traversal.This issue... Moderate Unreviewed

CVE-2024-52390 was published Nov 19, 2024

A vulnerability in the API subsystem and in the web-management interface of Cisco Network... Moderate Unreviewed

CVE-2021-1132 was published Nov 18, 2024

A vulnerability in the application data endpoints of Cisco SD-WAN vManage Software could... High Unreviewed

CVE-2020-26073 was published Nov 18, 2024

A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead... High Unreviewed

CVE-2024-41973 was published Nov 18, 2024

A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead... Moderate Unreviewed

CVE-2024-41972 was published Nov 18, 2024

The default TCL Camera application exposes a provider vulnerable to path traversal vulnerability.... High Unreviewed

CVE-2024-11136 was published Nov 14, 2024

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API irissetup... High Unreviewed

CVE-2023-21418 was published Nov 21, 2023

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API... High Unreviewed

CVE-2023-21416 was published Nov 21, 2023

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API overlay_del... High Unreviewed

CVE-2023-21415 was published Oct 16, 2023

Sandro Poppi, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API... High Unreviewed

CVE-2023-21417 was published Nov 21, 2023

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

53 advisories