GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
5,992 advisories
Filter by severity
An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to...
Moderate
Unreviewed
CVE-2024-42680
was published
Aug 15, 2024
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12...
Critical
Unreviewed
CVE-2024-7263
was published
Aug 15, 2024
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12...
Critical
Unreviewed
CVE-2024-7262
was published
Aug 15, 2024
A Local File Inclusion vulnerability has been found in ComfortKey, a product of Celsius Benelux....
High
Unreviewed
CVE-2024-27120
was published
Aug 14, 2024
webcrack has an Arbitrary File Write Vulnerability on Windows when Parsing and Saving a Malicious Bundle
High
CVE-2024-43373
was published
for
webcrack
(npm)
Aug 14, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
Moderate
Unreviewed
CVE-2024-39406
was published
Aug 14, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
High
Unreviewed
CVE-2024-39399
was published
Aug 14, 2024
Path traversal in the skin management component of Ivanti Avalanche 6.3.1 allows a remote...
High
Unreviewed
CVE-2024-38652
was published
Aug 14, 2024
A vulnerability was found in wanglongcn ltcms 1.0.20 and classified as critical. This issue...
Moderate
Unreviewed
CVE-2024-7741
was published
Aug 13, 2024
A vulnerability, which was classified as problematic, has been found in yzane vscode-markdown-pdf...
Moderate
Unreviewed
CVE-2024-7738
was published
Aug 13, 2024
In Ocean Data Systems Dream Report, a path traversal vulnerability could allow an attacker to...
High
Unreviewed
CVE-2024-6618
was published
Aug 13, 2024
Path traversal vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11...
High
Unreviewed
CVE-2024-23787
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43165
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-43140
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43129
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-43138
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-43135
was published
Aug 13, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
High
Unreviewed
CVE-2024-39651
was published
Aug 13, 2024
A vulnerability has been identified in SINEC NMS (All versions < V3.0). The importCertificate...
Moderate
Unreviewed
CVE-2024-41938
was published
Aug 13, 2024
Filament Excel Vulnerable to Path Traversal Attack on Export Download Endpoint
High
CVE-2024-42485
was published
for
pxlrbt/filament-excel
(Composer)
Aug 12, 2024
Path traveral in Streamlit on windows
Moderate
CVE-2024-42474
was published
for
streamlit
(pip)
Aug 12, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2023-7249
was published
Aug 12, 2024
An issue was discovered in Zimbra Collaboration (ZCS) 9.0 and 10.0. The vulnerability involves...
High
Unreviewed
CVE-2024-33535
was published
Aug 12, 2024
Raiden MAILD Remote Management System from Team Johnlong Software has a Relative Path Traversal...
High
Unreviewed
CVE-2024-7693
was published
Aug 12, 2024
Improper limitation of a pathname to a restricted directory vulnerability in Samsung MagicINFO 9...
High
Unreviewed
CVE-2024-7399
was published
Aug 12, 2024
ProTip!
Advisories are also available from the
GraphQL API