GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,206
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,765
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,470

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

5,371 advisories

Filter by severity

Sort by

Least recently updated

An issue in the component /php/script_uploads.php of Zenitel AlphaWeb XE v11.2.3.10 allows... Moderate Unreviewed

CVE-2024-57784 was published Jan 17, 2025

An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4... High Unreviewed

CVE-2024-53582 was published Jan 31, 2025

An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File... High Unreviewed

CVE-2024-53537 was published Jan 31, 2025

A low privileged remote attacker can specify an arbitrary file on the filesystem which may lead... High Unreviewed

CVE-2024-41973 was published Nov 18, 2024

A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead... Moderate Unreviewed

CVE-2024-41972 was published Nov 18, 2024

An issue was discovered in Zimbra Collaboration (ZCS) 8.8.15 and 9.0. An attacker can upload... Critical Unreviewed

CVE-2022-41352 was published Sep 27, 2022

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-24569 was published Feb 3, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed

CVE-2025-24605 was published Feb 3, 2025

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed

CVE-2025-23819 was published Feb 3, 2025

A vulnerability classified as critical was found in CmsEasy 7.7.7.9. This vulnerability affects... Moderate Unreviewed

CVE-2025-0973 was published Feb 3, 2025

The Jupiter X Core plugin for WordPress is vulnerable to Directory Traversal in all versions up... Moderate Unreviewed

CVE-2025-0365 was published Feb 1, 2025

SimpleHelp remote support software v5.5.7 and before allows admin users to upload arbitrary files... High Unreviewed

CVE-2024-57728 was published Jan 16, 2025

An issue was discovered in the Hyundai Gen5W_L in-vehicle infotainment system AE_E_PE_EUR... High Unreviewed

CVE-2023-26243 was published Apr 27, 2023

A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and... Moderate Unreviewed

CVE-2024-46664 was published Jan 14, 2025

In JetBrains YouTrack before 2024.3.51866 system takeover was possible through path traversal in... High Unreviewed

CVE-2024-54154 was published Dec 4, 2024

The MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress... Critical Unreviewed

CVE-2025-0493 was published Jan 31, 2025

Sante PACS Server DCM File Parsing Directory Traversal Arbitrary File Write Vulnerability. This... Moderate Unreviewed

CVE-2025-0573 was published Jan 30, 2025

Sante PACS Server Web Portal DCM File Parsing Directory Traversal Arbitrary File Write... Moderate Unreviewed

CVE-2025-0572 was published Jan 30, 2025

The WP Image Uploader plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed

CVE-2024-13720 was published Jan 30, 2025

The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions... High Unreviewed

CVE-2024-13671 was published Jan 30, 2025

The snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is... Critical Unreviewed

CVE-2024-40422 was published Jul 24, 2024

SAP NetWeaver (Visual Composer 7.0 RT) versions - 7.30, 7.31, 7.40, 7.50, without restriction, an... High Unreviewed

CVE-2021-38163 was published May 24, 2022

Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP... Critical Unreviewed

CVE-2022-37042 was published Aug 13, 2022

The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A... Critical Unreviewed

CVE-2021-22005 was published May 24, 2022

Zimbra Collaboration (aka ZCS) 8.8.15 and 9.0 has mboximport functionality that receives a ZIP... High Unreviewed

CVE-2022-27925 was published Apr 22, 2022

Previous 1 2 3 4 5 … 214 215 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

5,371 advisories