GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
17 advisories
Filter by severity
Vintage,
member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay...
Moderate
Unreviewed
CVE-2023-5800
was published
Feb 5, 2024
Marinus Pfund, member of the AXIS OS Bug Bounty Program,
has found the VAPIX API ledlimit.cgi...
Moderate
Unreviewed
CVE-2024-0067
was published
Sep 10, 2024
Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery...
Moderate
Unreviewed
CVE-2024-49258
was published
Oct 16, 2024
htmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the...
Moderate
Unreviewed
CVE-2024-34191
was published
May 14, 2024
An authenticated user can download sensitive files from Trellix products NX, EX, FX, AX, IVX, ...
Moderate
Unreviewed
CVE-2024-7608
was published
Aug 27, 2024
Mage AI Path Traversal vulnerability
Moderate
CVE-2024-45190
was published
for
mage-ai
(pip)
Aug 23, 2024
NLnet Labs’ Routinator 0.9.0 up to and including 0.12.1 contains a possible path traversal...
Moderate
Unreviewed
CVE-2023-39916
was published
Sep 13, 2023
The discontinued FFS Colibri product allows a remote user to access files on the system including...
Moderate
Unreviewed
CVE-2023-5885
was published
Nov 28, 2023
This vulnerability allows remote attackers to traverse paths via file upload on the affected LG...
Moderate
Unreviewed
CVE-2024-2863
was published
Mar 25, 2024
: Path Traversal vulnerability in Pandora FMS on all allows Path Traversal. This vulnerability...
Moderate
Unreviewed
CVE-2023-41793
was published
Mar 19, 2024
Arduino Create Agent path traversal - arbitrary file deletion vulnerability
Moderate
CVE-2023-43803
was published
for
github.com/arduino/arduino-create-agent
(Go)
Oct 18, 2023
Arduino Create Agent path traversal - arbitrary file deletion vulnerability
Moderate
CVE-2023-43801
was published
for
github.com/arduino/arduino-create-agent
(Go)
Oct 18, 2023
Improper Input Validation in Spring Framework
Moderate
CVE-2020-5421
was published
for
org.springframework:spring-framework-bom
(Maven)
Apr 30, 2021
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ...
Moderate
Unreviewed
CVE-2021-1357
was published
May 24, 2022
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ...
Moderate
Unreviewed
CVE-2021-1355
was published
May 24, 2022
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ...
Moderate
Unreviewed
CVE-2021-1364
was published
May 24, 2022
Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ...
Moderate
Unreviewed
CVE-2021-1282
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API