Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,147
NuGet
735
pip
3,948
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,179 advisories

Loading
Neo4j Graph apoc plugins Partial Path Traversal Vulnerability Moderate
CVE-2022-37423 was published for org.neo4j.procedure:apoc (Maven) Aug 12, 2022
JLLeitschuh
All editions of Rapid7 Metasploit prior to version 4.13.0-2017020701 contain a directory... High Unreviewed
CVE-2017-5229 was published May 17, 2022
An issue was discovered in the ContentResource API in dotCMS 3.0 through 22.02. Attackers can... Critical Unreviewed
CVE-2022-26352 was published Jul 18, 2022
Absolute path traversal vulnerability in the Image Export plugin 1.1 for WordPress allows remote... Critical Unreviewed
CVE-2015-5609 was published May 17, 2022
Directory traversal vulnerability in index.php in Wonder CMS 2014 allows remote attackers to... Critical Unreviewed
CVE-2014-8704 was published May 17, 2022
Directory traversal vulnerability in Google Chrome before 33.0.1750.152 on OS X and Linux and... High Unreviewed
CVE-2014-1715 was published May 17, 2022
An issue was discovered in certain legacy Eaton ePDUs -- the affected products are past end-of... Moderate Unreviewed
CVE-2016-9357 was published May 17, 2022
Directory traversal vulnerability in SOY CMS Ver.1.8.1 to Ver.1.8.12 allows authenticated... High Unreviewed
CVE-2017-2163 was published May 17, 2022
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a... Critical Unreviewed
CVE-2016-7552 was published May 17, 2022
Directory traversal vulnerability in diag.jsp file in CA Unified Infrastructure Management ... High Unreviewed
CVE-2016-9164 was published May 17, 2022
A vulnerability in the Cisco Unified Reporting upload tool accessed via the Cisco Unified... High Unreviewed
CVE-2016-9210 was published May 17, 2022
In Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051,... High Unreviewed
CVE-2016-10367 was published May 17, 2022
Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin High Unreviewed
CVE-2015-1000005 was published May 17, 2022
Pandora FMS v7.0NG.760 and below allows a relative path traversal in File Manager where a... High Unreviewed
CVE-2022-1648 was published Jul 27, 2022
An issue was discovered in CA Unified Infrastructure Management Version 8.47 and earlier. The... High Unreviewed
CVE-2016-5803 was published May 17, 2022
Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote... High Unreviewed
CVE-2016-10048 was published May 17, 2022
static-dev-server vulnerable to path traversal High
CVE-2022-25848 was published for static-dev-server (npm) Nov 29, 2022
lirantal
Samsung wssyncmlnps before 2015-10-31 allows directory traversal in a Kies restore, aka ZipFury. Moderate Unreviewed
CVE-2015-8780 was published May 17, 2022
Directory traversal vulnerability in Cisco Enterprise Content Delivery System (ECDS) allows... Moderate Unreviewed
CVE-2014-8019 was published May 17, 2022
The export function in SoftGuard Web (SGW) before 5.1.5 allows directory traversal to read an... Moderate Unreviewed
CVE-2022-31202 was published Jul 18, 2022
A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 through 6.2.3, 6.0.0 through 6.0.4... Moderate Unreviewed
CVE-2022-30301 was published Jul 20, 2022
A directory traversal vulnerability caused by specific character sequences within an improperly... Moderate Unreviewed
CVE-2022-2030 was published Jul 20, 2022
pyenv 1.2.24 through 2.3.2 allows local users to gain privileges via a .python-version file in... High Unreviewed
CVE-2022-35861 was published Jul 18, 2022
Goldshell ASIC Miners v2.2.1 and below was discovered to contain a path traversal vulnerability... High Unreviewed
CVE-2022-24659 was published Jul 21, 2022
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Improper... Critical Unreviewed
CVE-2022-0902 was published Jul 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database