GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,206
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,765
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,480

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,296 advisories

Filter by severity

Sort by

Least recently updated

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-24569 was published Feb 3, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-23819 was published Feb 3, 2025

An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4... High Unreviewed

CVE-2024-53582 was published Jan 31, 2025

An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File... High Unreviewed

CVE-2024-53537 was published Jan 31, 2025

The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions... High Unreviewed

CVE-2024-13671 was published Jan 30, 2025

The WP Image Uploader plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed

CVE-2024-13720 was published Jan 30, 2025

CMSimple 5.16 allows the user to read cms source code through manipulation of the file name in... High Unreviewed

CVE-2024-57549 was published Jan 28, 2025

Local privilege escalation due to incorrect assignment of privileges of temporary files in the... High Unreviewed

CVE-2025-0542 was published Jan 25, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-23422 was published Jan 24, 2025

The Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget... High Unreviewed

CVE-2024-13409 was published Jan 24, 2025

SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal... High Unreviewed

CVE-2024-57727 was published Jan 16, 2025

SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files... High Unreviewed

CVE-2024-57728 was published Jan 16, 2025

An unbounded resource search path in Ivanti EPM before the 2024 January-2025 Security Update and... High Unreviewed

CVE-2024-13158 was published Jan 14, 2025

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker... High Unreviewed

CVE-2024-13179 was published Jan 14, 2025

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker... High Unreviewed

CVE-2024-13181 was published Jan 14, 2025

Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker... High Unreviewed

CVE-2024-13180 was published Jan 14, 2025

A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... High Unreviewed

CVE-2024-48884 was published Jan 14, 2025

An improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... High Unreviewed

CVE-2024-36512 was published Jan 14, 2025

Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the... High Unreviewed

CVE-2023-42227 was published Jan 14, 2025

Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via Email... High Unreviewed

CVE-2023-42226 was published Jan 14, 2025

Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the... High Unreviewed

CVE-2023-42232 was published Jan 14, 2025

Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the... High Unreviewed

CVE-2023-42225 was published Jan 14, 2025

The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up... High Unreviewed

CVE-2024-9939 was published Jan 8, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2024-56286 was published Jan 7, 2025

The MIPL WC Multisite Sync plugin for WordPress is vulnerable to Directory Traversal in all... High Unreviewed

CVE-2024-12152 was published Jan 7, 2025

Previous 1 2 3 4 5 … 91 92 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,296 advisories