Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,792
Erlang
36
GitHub Actions
29
Go
2,377
Maven
5,000+
npm
4,002
NuGet
720
pip
3,802
Pub
12
RubyGems
927
Rust
984
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

57 advisories

Loading
aerc before 93bec0d allows directory traversal in commands/msgview/open.go because of direct path... Moderate Unreviewed
CVE-2025-49466 was published Jun 5, 2025
A Relative Path Traversal vulnerability [CWE-23] in FortiClientEMS 7.4.0 through 7.4.1 and... Moderate Unreviewed
CVE-2025-22859 was published May 13, 2025
A vulnerability in the “Manages app data” functionality of the web application of ctrlX OS allows... Moderate Unreviewed
CVE-2025-24343 was published Apr 30, 2025
In JetBrains TeamCity before 2025.03.1 improper path validation in loggingPreset parameter was... Moderate Unreviewed
CVE-2025-46433 was published Apr 25, 2025
In JetBrains Rider before 2025.1.2 custom archive unpacker allowed arbitrary file overwrite... Moderate Unreviewed
CVE-2025-43016 was published Apr 25, 2025
Relative Path Traversal vulnerability in Cristián Lávaque s2Member allows Path Traversal. This... Moderate Unreviewed
CVE-2025-32137 was published Apr 4, 2025
A vulnerability in the sanitize_path function in parisneo/lollms-webui v10 - latest allows an... Moderate Unreviewed
CVE-2024-7058 was published Mar 20, 2025
A path traversal vulnerability exists in the latest version of stangirard/quivr. This... Moderate Unreviewed
CVE-2024-6583 was published Mar 20, 2025
A vulnerability in the `start_app_server` function of parisneo/lollms-webui V12 (Strawberry)... Moderate Unreviewed
CVE-2024-10019 was published Mar 20, 2025
IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 is vulnerable to local file inclusion... Moderate Unreviewed
CVE-2024-56340 was published Feb 28, 2025
A vulnerability was found in SourceCodester Best Church Management Software 1.0. It has been... Moderate Unreviewed
CVE-2025-1599 was published Feb 24, 2025
A vulnerability has been found in PHPGurukul Online Nurse Hiring System 1.0 and classified as... Moderate Unreviewed
CVE-2025-1588 was published Feb 23, 2025
Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed
CVE-2025-0822 was published Feb 15, 2025
Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed
CVE-2024-13791 was published Feb 14, 2025
A vulnerability has been found in Safetytest Cloud-Master Server up to 1.1.1 and classified as... Moderate Unreviewed
CVE-2025-1086 was published Feb 7, 2025
A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and... Moderate Unreviewed
CVE-2024-46664 was published Jan 14, 2025
A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through... Moderate Unreviewed
CVE-2024-32115 was published Jan 14, 2025
A vulnerability classified as critical was found in Guangzhou Huayi Intelligent Technology Jeewms... Moderate Unreviewed
CVE-2025-0390 was published Jan 11, 2025
A vulnerability classified as problematic was found in Tsinghua Unigroup Electronic Archives... Moderate Unreviewed
CVE-2025-0225 was published Jan 5, 2025
A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S... Moderate Unreviewed
CVE-2024-13130 was published Jan 5, 2025
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2... Moderate Unreviewed
CVE-2024-12897 was published Dec 23, 2024
The topm-client from Chunghwa Telecom has an Arbitrary File Read vulnerability. The application... Moderate Unreviewed
CVE-2024-12645 was published Dec 16, 2024
Microsoft SharePoint Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-49062 was published Dec 12, 2024
A vulnerability was found in cjbi wetech-cms 1.0/1.1/1.2. It has been rated as problematic.... Moderate Unreviewed
CVE-2024-12482 was published Dec 12, 2024
Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiManager version 7.4.0... Moderate Unreviewed
CVE-2024-32116 was published Nov 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database