Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,801
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,010
NuGet
720
pip
3,810
Pub
12
RubyGems
930
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,051 advisories

Loading
Fiyo CMS v2.0.7 has an arbitrary file delete vulnerability in dapur/apps/app_config/controller... High Unreviewed
CVE-2017-8853 was published May 17, 2022
A Directory Traversal vulnerability in the web framework code of the Cisco application-hosting... High Unreviewed
CVE-2017-3851 was published May 17, 2022
Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress... High Unreviewed
CVE-2015-5469 was published May 17, 2022
A directory traversal vulnerability exists in core\admin\ajax\developer\extensions\file-browser... High Unreviewed
CVE-2017-9428 was published May 17, 2022
The piaoyunsoft/bt_lnmp repository through 2019-10-10 on GitHub allows absolute path traversal... High Unreviewed
CVE-2022-31578 was published Jul 12, 2022
Algo Communication Products Ltd. 8373 IP Zone Paging Adapter Firmware 1.7.6 allows attackers to... High Unreviewed
CVE-2022-31395 was published Jun 24, 2022
Directory traversal vulnerability in node/utils/Minify.js in Etherpad 1.1.1 through 1.5.2 allows... High Unreviewed
CVE-2015-3297 was published May 17, 2022
A vulnerability was found in Simplessus 3.7.7. It has been rated as critical. This issue affects... High Unreviewed
CVE-2017-20105 was published Jun 29, 2022
kittoframework kitto 0.5.1 is vulnerable to directory traversal in the router resulting in remote... High Unreviewed
CVE-2017-1000062 was published May 17, 2022
Geneko GWR routers allow directory traversal sequences starting with a /../ substring, as... High Unreviewed
CVE-2017-11456 was published May 17, 2022
A path traversal issue in entry attachments in Devolutions Remote Desktop Manager before 2022.2... High Unreviewed
CVE-2022-33995 was published Jun 22, 2022
get2post.php in IDERA Uptime Monitor 7.8 has directory traversal in the file_name parameter. High Unreviewed
CVE-2017-11469 was published May 17, 2022
Directory Traversal exists in ATutor before 2.2.2 via the icon parameter to /mods/_core/courses... High Unreviewed
CVE-2016-10400 was published May 17, 2022
Multiple directory traversal vulnerabilities in the (a) "Unzip archive" and (b) "Upload files and... High Unreviewed
CVE-2008-5275 was published May 17, 2022
Wiris Mathtype v7.28.0 was discovered to contain a path traversal vulnerability in the... High Unreviewed
CVE-2022-31372 was published Jun 17, 2022
Vulnerable versions of the Jupiter (<= 6.10.1) and JupiterX (<= 2.0.6) Themes allow logged-in... High Unreviewed
CVE-2022-1657 was published Jun 14, 2022
Multiple directory traversal vulnerabilities in NavBoard 16 (2.6.0) allow remote attackers to... High Unreviewed
CVE-2008-5943 was published May 17, 2022
In the WP Rocket plugin 2.9.3 for WordPress, the Local File Inclusion mitigation technique is to... High Unreviewed
CVE-2017-11658 was published May 17, 2022
dapur\apps\app_config\controller\backuper.php in Fiyo CMS 2.0.7 allows remote attackers to delete... High Unreviewed
CVE-2017-11630 was published May 17, 2022
mySCADA myDESIGNER Versions 8.20.0 and prior fails to properly validate contents of an imported... High Unreviewed
CVE-2021-43555 was published May 24, 2022
User account escalation in Apache Hadoop High
CVE-2021-33036 was published for org.apache.hadoop:hadoop-yarn-server-common (Maven) Jun 16, 2022
Directory traversal vulnerability in the media server in Orb Networks Orb before 2.01.0022 allows... High Unreviewed
CVE-2008-5645 was published May 17, 2022
Directory traversal vulnerability in the FTP client in AceFTP Freeware 3.80.3 and AceFTP Pro 3.80... High Unreviewed
CVE-2008-5175 was published May 17, 2022
A vulnerability has been identified in Siveillance Video DLNA Server (2019 R1), Siveillance Video... High Unreviewed
CVE-2021-42021 was published May 24, 2022
Directory traversal vulnerability in plugins/ImageManager/backend.php in Xinha 0.96, as used in... High Unreviewed
CVE-2017-11723 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database