GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,476
Erlang
33
GitHub Actions
24
Go
2,207
Maven
5,000+
npm
3,858
NuGet
696
pip
3,639
Pub
12
RubyGems
913
Rust
918
Swift
38
Unreviewed advisories
All unreviewed
5,000+
2,925 advisories
Filter by severity
An issue in the system image upload interface of Alldata v0.4.6 allows attackers to execute a...
High
Unreviewed
CVE-2024-29434
was published
Apr 3, 2024
tar-fs Vulnerable to Link Following and Path Traversal via Extracting a Crafted tar File
High
CVE-2024-12905
was published
for
tar-fs
(npm)
Mar 27, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-54291
was published
Mar 28, 2025
The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2025-2328
was published
Mar 28, 2025
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in...
High
Unreviewed
CVE-2025-27718
was published
Mar 28, 2025
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in...
High
Unreviewed
CVE-2025-27932
was published
Mar 28, 2025
Open Neural Network Exchange (ONNX) Path Traversal Vulnerability
High
CVE-2024-7776
was published
for
onnx
(pip)
Mar 20, 2025
OrangeScrum version 2.0.11 allows an authenticated external attacker to delete arbitrary local...
High
Unreviewed
CVE-2023-0454
was published
Feb 1, 2023
Serenissima Informatica Fast Checkin 1.0 is vulnerable to Directory Traversal.
High
Unreviewed
CVE-2022-47768
was published
Feb 1, 2023
Any user can delete an arbitrary folder (recursively) on a remote server due to bad input...
High
Unreviewed
CVE-2024-0763
was published
Feb 28, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2025-30895
was published
Mar 27, 2025
Directory traversal vulnerability in scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS in SAP...
High
Unreviewed
CVE-2017-12637
was published
May 13, 2022
NASA cFS (Core Flight System) Aquila is vulnerable to path traversal in the OSAL module, allowing...
High
Unreviewed
CVE-2025-25371
was published
Mar 25, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2025-30567
was published
Mar 25, 2025
Path Traversal vulnerability in wpjobportal WP Job Portal allows PHP Local File Inclusion. This...
High
Unreviewed
CVE-2025-26935
was published
Feb 25, 2025
An authenticated remote code execution in Kentico Xperience allows authenticated users Staging...
High
Unreviewed
CVE-2025-2749
was published
Mar 24, 2025
The sina-extension-for-elementor plugin before 2.2.1 for WordPress has local file inclusion.
High
Unreviewed
CVE-2019-15839
was published
May 24, 2022
GluonCV Arbitrary File Write via TarSlip
High
CVE-2024-12216
was published
for
gluoncv
(pip)
Mar 20, 2025
An issue was discovered in GL-INet Beryl AX GL-MT3000 v4.7.0. Attackers are able to download...
High
Unreviewed
CVE-2025-25685
was published
Mar 17, 2025
MLflow has a Local File Read/Path Traversal in dbfs
High
CVE-2024-8859
was published
for
mlflow
(pip)
Mar 20, 2025
AgentScope directory traversal vulnerability in /read-examples
High
CVE-2024-8524
was published
for
agentscope
(pip)
Mar 20, 2025
AgentScope Path Traversal in /api/file
High
CVE-2024-8438
was published
for
agentscope
(pip)
Mar 20, 2025
A Path Traversal vulnerability exists in the `/wipe_database` endpoint of parisneo/lollms version...
High
Unreviewed
CVE-2024-9597
was published
Mar 20, 2025
ProTip!
Advisories are also available from the
GraphQL API