Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,176 advisories

Loading
Directory traversal vulnerability in scr/soustab.php in openMairie Openpresse 1.01, when... Moderate Unreviewed
CVE-2010-1935 was published May 17, 2022
Directory traversal vulnerability in the Dione Form Wizard (aka FDione or com_dioneformwizard)... High Unreviewed
CVE-2010-2045 was published May 17, 2022
Directory traversal vulnerability in the Gadget Factory (com_gadgetfactory) component 1.0.0 and 1... High Unreviewed
CVE-2010-1956 was published May 17, 2022
Directory traversal vulnerability in the SMEStorage (com_smestorage) component before 1.1 for... Moderate Unreviewed
CVE-2010-1858 was published May 17, 2022
Directory traversal vulnerability in the Online Market (com_market) component 2.x for Joomla!... Moderate Unreviewed
CVE-2010-1722 was published May 17, 2022
Directory traversal vulnerability in the Online Examination (aka Online Exam or com_onlineexam)... Moderate Unreviewed
CVE-2010-1715 was published May 17, 2022
The CivetWeb web library does not validate uploaded filepaths when running on an OS other than... Critical Unreviewed
CVE-2020-27304 was published May 24, 2022
Multiple directory traversal vulnerabilities in ProMan 0.1.1 and earlier allow remote attackers... Moderate Unreviewed
CVE-2010-2138 was published May 17, 2022
The Cab fare calculator WordPress plugin through 1.0.3 does not validate the controller parameter... Critical Unreviewed
CVE-2022-1391 was published Apr 26, 2022
Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem... Moderate Unreviewed
CVE-2010-2307 was published May 17, 2022
Directory traversal vulnerability in the JExtensions JE Section/Property Finder (jesectionfinder)... Moderate Unreviewed
CVE-2010-2680 was published May 17, 2022
Directory traversal vulnerability in login.php in Siestta 2.0, when register_globals is enabled,... Moderate Unreviewed
CVE-2010-1710 was published May 17, 2022
Icinga Icinga Web2 2.0.0 through 2.6.4, 2.7.4 and 2.8.2 has a Directory Traversal vulnerability... Moderate Unreviewed
CVE-2020-24368 was published May 24, 2022
There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands... Critical Unreviewed
CVE-2020-20277 was published May 24, 2022
Multiple directory traversal vulnerabilities in index.php in Linker IMG 1.0 and earlier allow... Moderate Unreviewed
CVE-2010-2456 was published May 17, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160,... High Unreviewed
CVE-2021-1296 was published May 24, 2022
TOTVS Fluig Luke 1.7.0 allows directory traversal via a base64 encoded file=../ to a volume... High Unreviewed
CVE-2020-29134 was published May 24, 2022
The Enterprise License Manager portal in Mitel MiContact Center Enterprise before 9.4 could allow... Critical Unreviewed
CVE-2021-26714 was published May 24, 2022
Twig may load a template outside a configured directory when using the filesystem loader High
CVE-2022-39261 was published for twig/twig (Composer) Sep 30, 2022
In Real Player 20.0.7.309 and 20.0.8.310, external::Import() allows download of arbitrary file... Critical Unreviewed
CVE-2022-32270 was published Jun 4, 2022
Directory traversal vulnerability in the JE Quotation Form (com_jequoteform) component 1.0b1 for... High Unreviewed
CVE-2010-2128 was published May 17, 2022
Directory traversal vulnerability in the Ultimate Portfolio (com_ultimateportfolio) component 1.0... Moderate Unreviewed
CVE-2010-1659 was published May 17, 2022
fr-archive-libarchive.c in GNOME file-roller through 3.38.0, as used by GNOME Shell and other... Low Unreviewed
CVE-2020-36314 was published May 24, 2022
Directory traversal vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP... Moderate Unreviewed
CVE-2010-1589 was published May 17, 2022
SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post... Moderate Unreviewed
CVE-2021-20023 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database