GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+
113 advisories
Filter by severity
In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, adjusting the path component for the...
Low
Unreviewed
CVE-2021-43264
was published
May 24, 2022
fr-archive-libarchive.c in GNOME file-roller through 3.38.0, as used by GNOME Shell and other...
Low
Unreviewed
CVE-2020-36314
was published
May 24, 2022
Some devices of Thales DIS (formerly Gemalto, formerly Cinterion) allow Directory Traversal by...
Low
Unreviewed
CVE-2020-15858
was published
May 24, 2022
The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP POST data of...
Low
Unreviewed
CVE-2020-12392
was published
May 24, 2022
fr-archive-libarchive.c in GNOME file-roller through 3.36.1 allows Directory Traversal during...
Low
Unreviewed
CVE-2020-11736
was published
May 24, 2022
GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between projects.
Low
Unreviewed
CVE-2020-10977
was published
May 24, 2022
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec...
Low
Unreviewed
CVE-2020-8446
was published
May 24, 2022
Duplicate Advisory: Node CLI Allows Arbitrary File Overwrite
Low
CVE-2016-1000021
was published
for
cli
(npm)
May 24, 2022
•
withdrawn
A path traversal vulnerability in NFX150 Series and QFX10K Series, EX9200 Series, MX Series and...
Low
Unreviewed
CVE-2019-0074
was published
May 24, 2022
Path traversal in Jenkins REPO Plugin
Low
CVE-2022-30949
was published
for
org.jenkins-ci.plugins:git
(Maven)
May 18, 2022
Path traversal in Jenkins Mercurial Plugin
Low
CVE-2022-30948
was published
for
org.jenkins-ci.plugins:mercurial
(Maven)
May 18, 2022
Directory traversal vulnerability in naxsi-ui/nx_extract.py in the Naxsi module before 0.46-1 for...
Low
Unreviewed
CVE-2012-3380
was published
May 17, 2022
Absolute path traversal vulnerability in the extract_jar function in jartool.c in FastJar 0.98...
Low
Unreviewed
CVE-2010-2322
was published
May 17, 2022
Directory traversal vulnerability on the HOT HOTBOX router with software 2.1.11 allows remote...
Low
Unreviewed
CVE-2013-5219
was published
May 17, 2022
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite...
Low
Unreviewed
CVE-2012-6607
was published
May 17, 2022
Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for...
Low
Unreviewed
CVE-2014-9461
was published
May 17, 2022
Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid...
Low
Unreviewed
CVE-2015-0933
was published
May 17, 2022
Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1 before Patch 47, 4.2...
Low
Unreviewed
CVE-2013-6177
was published
May 17, 2022
Directory traversal vulnerability in Jenkins before 1.600 and LTS before 1.596.1 allows remote...
Low
Unreviewed
CVE-2015-1807
was published
May 17, 2022
Directory traversal vulnerability in Backup in Apple iOS before 8.3 allows attackers to read...
Low
Unreviewed
CVE-2015-1087
was published
May 17, 2022
Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users...
Low
Unreviewed
CVE-2014-8737
was published
May 17, 2022
Directory traversal vulnerability in pure-FTPd 1.0.22 and possibly other versions, when running...
Low
Unreviewed
CVE-2011-3171
was published
May 17, 2022
Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow remote authenticated users to...
Low
Unreviewed
CVE-2012-0991
was published
May 17, 2022
Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple ...
Low
Unreviewed
CVE-2012-6064
was published
May 17, 2022
Absolute path traversal vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4...
Low
Unreviewed
CVE-2013-2978
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API