Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

117 advisories

Loading
Multiple directory traversal vulnerabilities in admin.php3 in PHPMyChat 0.14.5 allow remote... Low Unreviewed
CVE-2004-2717 was published Apr 29, 2022
In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis (ossec... Low Unreviewed
CVE-2020-8446 was published May 24, 2022
unalz 0.53 allows user-assisted attackers to overwrite arbitrary files via an ALZ archive with ".... Low Unreviewed
CVE-2006-0950 was published May 1, 2022
Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list... Low Unreviewed
CVE-2007-1773 was published May 1, 2022
Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3... Low Unreviewed
CVE-2007-4271 was published May 1, 2022
Directory traversal vulnerability in index.php in Scribe 0.2 allows remote attackers to read... Low Unreviewed
CVE-2008-0822 was published May 1, 2022
Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and earlier allows remote... Low Unreviewed
CVE-2007-5731 was published May 1, 2022
Absolute path traversal vulnerability in install/index.php in Drake CMS 0.4.11 RC8 allows remote... Low Unreviewed
CVE-2008-1371 was published May 1, 2022
Directory traversal vulnerability in index.php in PlutoStatus Locator 1.0 pre alpha allows remote... Low Unreviewed
CVE-2008-0819 was published May 1, 2022
Directory traversal vulnerability in makepost.php in DaZPHPNews 0.1-1, when register_globals is... Low Unreviewed
CVE-2008-1696 was published May 1, 2022
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when register_globals is... Low Unreviewed
CVE-2009-0286 was published May 2, 2022
Multiple directory traversal vulnerabilities in CutePHP CuteNews 1.4.6, when magic_quotes_gpc is... Low Unreviewed
CVE-2009-4116 was published May 2, 2022
Directory traversal vulnerability in the AutartiTarot (com_autartitarot) component 1.0.3 for... Low Unreviewed
CVE-2010-0801 was published May 2, 2022
The default configuration of smbd in Samba before 3.3.11, 3.4.x before 3.4.6, and 3.5.x before 3... Low Unreviewed
CVE-2010-0926 was published May 2, 2022
The original patch for a GNU tar directory traversal vulnerability (CVE-2002-0399) in Red Hat... Low Unreviewed
CVE-2005-1918 was published May 3, 2022
Path traversal vulnerability in Galaxy Themes prior to SMR May-2022 Release 1 allows attackers to... Low Unreviewed
CVE-2022-28784 was published May 4, 2022
Absolute path traversal vulnerability in the intu-help-qb (aka Intuit Help System Async Pluggable... Low Unreviewed
CVE-2012-2421 was published May 13, 2022
Path traversal in Node-Red Low
CVE-2021-21298 was published for @node-red/runtime (npm) Feb 26, 2021
Leptonica 1.74.4 constructs unintended pathnames (containing duplicated path components) when... Low Unreviewed
CVE-2017-18196 was published May 13, 2022
The Wholesale Market for WooCommerce WordPress plugin before 2.0.0 does not validate user input... Low Unreviewed
CVE-2022-4109 was published Jan 3, 2023
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal. Low Unreviewed
CVE-2018-16968 was published May 14, 2022
Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03... Low Unreviewed
CVE-2011-0345 was published May 14, 2022
Directory traversal vulnerability in javatester_init.php in IBM Lotus Protector for Mail Security... Low Unreviewed
CVE-2012-2202 was published May 17, 2022
Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows... Low Unreviewed
CVE-2014-4384 was published May 17, 2022
Absolute path traversal vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4... Low Unreviewed
CVE-2013-2988 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database