Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

50 advisories

Loading
Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Path Traversal: ... Moderate Unreviewed
CVE-2025-43886 was published Sep 10, 2025
Path Traversal: '.../...//' vulnerability in AA-Team Pro Bulk Watermark Plugin for WordPress... Moderate Unreviewed
CVE-2025-4956 was published Aug 30, 2025
Path Traversal: '.../...//' vulnerability in Printeers Printeers Print & Ship allows Path... Moderate Unreviewed
CVE-2025-48081 was published Aug 27, 2025
Path Traversal vulnerability in miniOrange Prevent files / folders access allows Path Traversal.... Moderate Unreviewed
CVE-2025-53561 was published Aug 20, 2025
Path Traversal vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop... Moderate Unreviewed
CVE-2025-52712 was published Aug 14, 2025
The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack,... Moderate Unreviewed
CVE-2024-52885 was published Aug 6, 2025
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7 and 9.1.10, and Splunk Cloud Platform... Moderate Unreviewed
CVE-2025-20320 was published Jul 7, 2025
A path traversal vulnerability in RSFirewall component 2.9.7 - 3.1.5 for Joomla was discovered.... Moderate Unreviewed
CVE-2025-27445 was published Jun 5, 2025
Path Traversal: '.../...//' vulnerability in ctltwp Section Widget allows Path Traversal.This... Moderate Unreviewed
CVE-2025-46441 was published May 19, 2025
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... Moderate Unreviewed
CVE-2025-40573 was published May 13, 2025
io.jmix.localfs:jmix-localfs has a Path Traversal in Local File Storage Moderate
CVE-2025-32950 was published for io.jmix.localfs:jmix-localfs (Maven) Apr 22, 2025
shadowsock5 AnonySE26
Overview   The product uses external input to construct a pathname that should be within a... Moderate Unreviewed
CVE-2025-24908 was published Apr 17, 2025
Overview   The product uses external input to construct a pathname that should be within a... Moderate Unreviewed
CVE-2025-24907 was published Apr 17, 2025
Path Traversal vulnerability in Quý Lê 91 Administrator Z allows Path Traversal. This issue... Moderate Unreviewed
CVE-2025-39598 was published Apr 16, 2025
Path Traversal vulnerability in NotFound WPJobBoard allows Path Traversal. This issue affects... Moderate Unreviewed
CVE-2025-30966 was published Apr 16, 2025
Path Traversal vulnerability in NotFound Pie Register Premium. This issue affects Pie Register... Moderate Unreviewed
CVE-2025-26940 was published Mar 16, 2025
Path Traversal vulnerability in NotFound GPX Viewer allows Path Traversal. This issue affects GPX... Moderate Unreviewed
CVE-2025-27274 was published Mar 3, 2025
Path Traversal vulnerability in CodeManas Search with Typesense allows Path Traversal. This issue... Moderate Unreviewed
CVE-2025-26876 was published Feb 25, 2025
A CWE-35 "Path Traversal" in maxtime/api/database/database.lua in Q-Free MaxTime less than or... Moderate Unreviewed
CVE-2025-26355 was published Feb 12, 2025
A CWE-35 "Path Traversal" in maxtime/api/database/database.lua in Q-Free MaxTime less than or... Moderate Unreviewed
CVE-2025-26357 was published Feb 12, 2025
A CWE-35 "Path Traversal" in the template deletion mechanism in Q-Free MaxTime less than or equal... Moderate Unreviewed
CVE-2025-26352 was published Feb 12, 2025
A CWE-35 "Path Traversal" in the template download mechanism in Q-Free MaxTime less than or equal... Moderate Unreviewed
CVE-2025-26351 was published Feb 12, 2025
A CWE-35 "Path Traversal" in maxtime/api/sql/sql.lua in Q-Free MaxTime less than or equal to... Moderate Unreviewed
CVE-2025-26353 was published Feb 12, 2025
A vulnerability was discovered in the firmware builds up to 8.2.1.0820 in Poly Edge E devices.... Moderate Unreviewed
CVE-2025-0858 was published Feb 5, 2025
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc... Moderate Unreviewed
CVE-2024-12087 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database