Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,807
Erlang
36
GitHub Actions
31
Go
2,390
Maven
5,000+
npm
4,026
NuGet
720
pip
3,815
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+

779 advisories

Loading
The romain20100/nursequest repository through 2018-02-22 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31555 was published Jul 12, 2022
The JustAnotherSoftwareDeveloper/Python-Recipe-Database repository through 2021-03-31 on GitHub... Critical Unreviewed
CVE-2022-31518 was published Jul 12, 2022
The ThundeRatz/ThunderDocs repository through 2020-05-01 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31526 was published Jul 12, 2022
The jmcginty15/Solar-system-simulator repository through 2021-07-26 on GitHub allows absolute... Critical Unreviewed
CVE-2022-31537 was published Jul 12, 2022
The kumardeepak/hin-eng-preprocessing repository through 2019-07-16 on GitHub allows absolute... Critical Unreviewed
CVE-2022-31540 was published Jul 12, 2022
The olmax99/pyathenastack repository through 2019-11-08 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31550 was published Jul 12, 2022
The varijkapil13/Sphere_ImageBackend repository through 2019-10-03 on GitHub allows absolute path... Critical Unreviewed
CVE-2022-31561 was published Jul 12, 2022
The whmacmac/vprj repository through 2022-04-06 on GitHub allows absolute path traversal because... Critical Unreviewed
CVE-2022-31563 was published Jul 12, 2022
The waveyan/internshipsystem repository through 2018-05-22 on GitHub allows absolute path... Critical Unreviewed
CVE-2022-31562 was published Jul 12, 2022
The duducosmos/livro_python repository through 2018-06-06 on GitHub allows absolute path... Critical Unreviewed
CVE-2022-31575 was published Jul 12, 2022
The shaolo1/VideoServer repository through 2019-09-21 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31582 was published Jul 12, 2022
A path traversal vulnerability in loader.php of CWP v0.9.8.1122 allows attackers to execute... Critical Unreviewed
CVE-2022-25046 was published Jul 8, 2022
The sergeKashkin/Simple-RAT repository before 2022-05-03 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31510 was published Jul 12, 2022
dpkg-source in dpkg 1.3.0 through 1.18.23 is able to use a non-GNU patch program and does not... Critical Unreviewed
CVE-2017-8283 was published May 17, 2022
OFFIS DCMTK's (All versions prior to 3.6.7) service class user (SCU) is vulnerable to relative... Critical Unreviewed
CVE-2022-2120 was published Jun 25, 2022
The ChangeWeDer/BaiduWenkuSpider_flaskWeb repository before 2021-11-29 on GitHub allows absolute... Critical Unreviewed
CVE-2022-31504 was published Jul 12, 2022
The iedadata/usap-dc-website repository through 1.0.1 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31509 was published Jul 12, 2022
The Atom02/flask-mvc repository through 2020-09-14 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31512 was published Jul 12, 2022
The Lukasavicus/WindMill repository through 1.0 on GitHub allows absolute path traversal because... Critical Unreviewed
CVE-2022-31519 was published Jul 12, 2022
The NotVinay/karaokey repository through 2019-12-11 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31522 was published Jul 12, 2022
The PaddlePaddle/Anakin repository through 0.1.1 on GitHub allows absolute path traversal because... Critical Unreviewed
CVE-2022-31523 was published Jul 12, 2022
The Luxas98/logstash-management-api repository through 2020-05-04 on GitHub allows absolute path... Critical Unreviewed
CVE-2022-31520 was published Jul 12, 2022
The cinemaproject/monorepo repository through 2021-03-03 on GitHub allows absolute path traversal... Critical Unreviewed
CVE-2022-31529 was published Jul 12, 2022
The Wildog/flask-file-server repository through 2020-02-20 on GitHub allows absolute path... Critical Unreviewed
CVE-2022-31527 was published Jul 12, 2022
The csm-aut/csm repository through 3.5 on GitHub allows absolute path traversal because the Flask... Critical Unreviewed
CVE-2022-31530 was published Jul 12, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database