GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,815
Erlang
36
GitHub Actions
32
Go
2,401
Maven
5,000+
npm
4,044
NuGet
723
pip
3,830
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+
130 advisories
Filter by severity
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Moderate
CVE-2019-10352
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Apache Karaf vulnerable to relative path traversal
Moderate
CVE-2019-0226
was published
for
org.apache.karaf.config:org.apache.karaf.config.core
(Maven)
May 24, 2022
Apache Struts directory traversal vulnerability
Moderate
CVE-2008-6505
was published
for
org.apache.struts:struts2-core
(Maven)
May 17, 2022
Improper Limitation of a Pathname to a Restricted Directory in JBoss Undertow
Moderate
CVE-2014-7816
was published
for
io.undertow:undertow-core
(Maven)
May 17, 2022
Improper Limitation of a Pathname to a Restricted Directory in Elasticsearch
Moderate
CVE-2015-3337
was published
for
org.elasticsearch:elasticsearch
(Maven)
May 17, 2022
Improper Limitation of a Pathname to a Restricted Directory in Apache Solr
Moderate
CVE-2013-6397
was published
for
org.apache.solr:solr-core
(Maven)
May 17, 2022
Path Traversal in Eclipse Mojarra
Moderate
CVE-2013-3827
was published
for
org.glassfish:javax.faces
(Maven)
May 17, 2022
Jenkins directory traversal vulnerability
Moderate
CVE-2014-2059
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 17, 2022
Jenkins Path Traversal vulnerability
Moderate
CVE-2014-3664
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 17, 2022
Path Traversal in Apache Oozie
Moderate
CVE-2017-15712
was published
for
org.apache.oozie:oozie-core
(Maven)
May 14, 2022
Jenkins HTML Publisher Plugin path traversal vulnerability
Moderate
CVE-2018-1000175
was published
for
org.jenkins-ci.plugins:htmlpublisher
(Maven)
May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Elasticsearch
Moderate
CVE-2015-5531
was published
for
org.elasticsearch:elasticsearch
(Maven)
May 14, 2022
Apache OpenMeetings Directory Traversal vulnerability
Moderate
CVE-2016-0784
was published
for
org.apache.openmeetings:openmeetings-install
(Maven)
May 14, 2022
WSO2 Carbon directory traversal vulnerability
Moderate
CVE-2016-4314
was published
for
org.wso2.carbon.commons:org.wso2.carbon.logging.view.ui
(Maven)
May 14, 2022
Apache Shiro Path Traversal vulnerability
Moderate
CVE-2010-3863
was published
for
org.apache.shiro:shiro-root
(Maven)
May 14, 2022
RubyGems Path Traversal vulnerability
Moderate
CVE-2018-1000079
was published
for
org.jruby:jruby-stdlib
(RubyGems)
May 14, 2022
Directory Traversal in Apache Tomcat
Moderate
CVE-2008-5515
was published
for
org.apache.tomcat:tomcat
(Maven)
May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Apache ActiveMQ
Moderate
CVE-2015-1830
was published
for
org.apache.activemq:activemq-client
(Maven)
May 14, 2022
OpenRefine Directory Traversal
Moderate
CVE-2018-19859
was published
for
org.openrefine:main
(Maven)
May 14, 2022
UberFire Framework Improperly Restricts Paths
Moderate
CVE-2014-8114
was published
for
org.uberfire:uberfire-parent
(Maven)
May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat
Moderate
CVE-2015-5174
was published
for
org.apache.tomcat:tomcat
(Maven)
May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat
Moderate
CVE-2015-5345
was published
for
org.apache.tomcat:tomcat
(Maven)
May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in WildFly
Moderate
CVE-2018-10862
was published
for
org.wildfly.core:wildfly-server
(Maven)
May 14, 2022
Path Traversal in Jenkins
Moderate
CVE-2018-1000406
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Jenkins
Moderate
CVE-2018-1000997
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API