Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,176 advisories

Loading
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain... Critical Unreviewed
CVE-2022-27277 was published Apr 11, 2022
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain... High Unreviewed
CVE-2022-27279 was published Apr 11, 2022
ASUS RT-AX56U’s update_json function has a path traversal vulnerability due to insufficient... High Unreviewed
CVE-2022-23970 was published Apr 8, 2022
Dell VNX2 for File version 8.1.21.266 and earlier, contain a path traversal vulnerability which... Critical Unreviewed
CVE-2021-36288 was published Apr 9, 2022
A path traversal vulnerability was identified in GitHub Enterprise Server management console that... High Unreviewed
CVE-2022-23732 was published Apr 6, 2022
Path traversal vulnerability in Samsung Flow prior to version 4.8.07.4 allows local attackers to... Moderate Unreviewed
CVE-2022-28543 was published Apr 12, 2022
A vulnerability was found in jLEMS. It has been declared as critical. Affected by this... High Unreviewed
CVE-2022-4583 was published Dec 17, 2022
Improper access control and path traversal vulnerability in StroageManager and... High Unreviewed
CVE-2022-27836 was published Apr 12, 2022
A relative path traversal in FortiWeb versions 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow... Moderate Unreviewed
CVE-2021-41026 was published Apr 7, 2022
Insecure handling of a download function leads to disclosure of internal files due to path... High Unreviewed
CVE-2021-46417 was published Apr 8, 2022
A highly privileged remote attacker, can gain unauthorized access to display contents of... Moderate Unreviewed
CVE-2022-27657 was published Apr 13, 2022
A Directory Traversal vulnerability exists in KevinLAB Inc Building Energy Management System 4ST... Moderate Unreviewed
CVE-2021-37293 was published Apr 12, 2022
CMSimple 5.4 is vulnerable to Directory Traversal. The vulnerability exists when a user changes... Critical Unreviewed
CVE-2021-43741 was published Apr 14, 2022
A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')... Critical Unreviewed
CVE-2021-22794 was published Apr 14, 2022
RiteCMS version 3.1.0 and below suffers from an arbitrary file overwrite via path traversal... High Unreviewed
CVE-2022-24247 was published Apr 13, 2022
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a... Critical Unreviewed
CVE-2021-43290 was published Apr 15, 2022
An issue was discovered in ThoughtWorks GoCD before 21.3.0. An attacker who has compromised a... High Unreviewed
CVE-2021-43289 was published Apr 15, 2022
Directory Traversal vulnerability in file cn/roothub/store/FileSystemStorageService in function... High Unreviewed
CVE-2022-28052 was published Apr 14, 2022
A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal)... High Unreviewed
CVE-2021-22797 was published Apr 14, 2022
Path traversal vulnerability in unzip method of InstallAgentCommonHelper in Galaxy store prior to... Moderate Unreviewed
CVE-2022-28544 was published Apr 12, 2022
Arbitrary File Read vulnerability in WPvivid Team Migration, Backup, Staging – WPvivid (WordPress... High Unreviewed
CVE-2022-27844 was published Apr 12, 2022
Yearning versions 2.3.1 and 2.3.2 Interstellar GA and 2.3.4 - 2.3.6 Neptune is vulnerable to... High Unreviewed
CVE-2022-27043 was published Apr 16, 2022
Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cisco... Moderate Unreviewed
CVE-2022-20722 was published Apr 16, 2022
Directory traversal vulnerability in the Foobla Suggestions (com_foobla_suggestions) component 1... Moderate Unreviewed
CVE-2010-2920 was published May 17, 2022
RiteCMS version 3.1.0 and below suffers from an arbitrary file deletion via path traversal... High Unreviewed
CVE-2022-24248 was published Apr 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database