GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,990
Composer 4,293
Erlang 31
GitHub Actions 21
Go 2,061
Maven 5,239
npm 3,744
NuGet 668
pip 3,423
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,529

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,260 advisories

Filter by severity

Sort by

Least recently updated

PJL directory traversal vulnerability in Lexmark devices through 2021-12-07 that can be leveraged... High Unreviewed

CVE-2021-44737 was published Jan 21, 2022

A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload... High Unreviewed

CVE-2022-23119 was published Jan 21, 2022

An issue was discovered in webp_server_go 0.4.0. There is a directory traversal vulnerability... High Unreviewed

CVE-2021-46104 was published Jan 20, 2022

This affects the package Crow before 0.3+4. It is possible to traverse directories to fetch... High Unreviewed

CVE-2021-23514 was published Jan 14, 2022

SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal (in... High Unreviewed

CVE-2020-29050 was published Jan 11, 2022

An arbitrary file read vulnerability exists in NavigateCMS 2.9 via /navigate/navigate_download... High Unreviewed

CVE-2021-44351 was published Jan 7, 2022

Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability ... High Unreviewed

CVE-2021-37126 was published Jan 4, 2022

HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this... High Unreviewed

CVE-2021-39970 was published Jan 4, 2022

Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an... High Unreviewed

CVE-2021-20134 was published Dec 31, 2021

Quagga Services on D-Link DIR-2640 less than or equal to version 1.11B02 are affected by an... High Unreviewed

CVE-2021-20133 was published Dec 31, 2021

Certain Starcharge products are vulnerable to Directory Traversal via main.cgi. The affected... High Unreviewed

CVE-2021-45418 was published Dec 23, 2021

A directory traversal vulnerability exists in the Web Manager FsCopyFile functionality of... High Unreviewed

CVE-2021-21880 was published Dec 23, 2021

A directory traversal vulnerability exists in the Web Manager File Upload functionality of... High Unreviewed

CVE-2021-21879 was published Dec 23, 2021

A directory traversal vulnerability exists in the Web Manager FsMove functionality of Lantronix... High Unreviewed

CVE-2021-21885 was published Dec 23, 2021

A directory traversal vulnerability exists in the Web Manager FsTFtp functionality of Lantronix... High Unreviewed

CVE-2021-21895 was published Dec 23, 2021

A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal... High Unreviewed

CVE-2021-21904 was published Dec 23, 2021

Specially-crafted command line arguments can lead to arbitrary file deletion in the del .cnt|.log... High Unreviewed

CVE-2021-21909 was published Dec 23, 2021

Chain Sea ai chatbot system’s specific file download function has path traversal vulnerability.... High Unreviewed

CVE-2021-44162 was published Dec 21, 2021

SICK SOPAS ET before version 4.8.0 allows attackers to manipulate the pathname of the emulator... High Unreviewed

CVE-2021-32498 was published Dec 18, 2021

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2021-3960 was published Dec 17, 2021

HD-Network Real-time Monitoring System 2.0 allows ../ directory traversal to read /etc/shadow via... High Unreviewed

CVE-2021-45043 was published Dec 16, 2021

A vulnerability has been identified in Teamcenter Active Workspace V4.3 (All versions < V4.3.11),... High Unreviewed

CVE-2021-41547 was published Dec 15, 2021

The True Ranker plugin <= 2.2.2 for WordPress allows arbitrary files, including sensitive... High Unreviewed

CVE-2021-39312 was published Dec 15, 2021

SAF-T Framework Transaction SAFTN_G allows an attacker to exploit insufficient validation of path... High Unreviewed

CVE-2021-44232 was published Dec 15, 2021

The All-in-One Video Gallery WordPress plugin before 2.5.0 does not sanitise and validate the tab... High Unreviewed

CVE-2021-24970 was published Dec 14, 2021

Previous 1 2 … 87 88 89 90 91 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,260 advisories