Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,651
Maven
5,000+
npm
4,279
NuGet
760
pip
4,066
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

7,362 advisories

Loading
Rockwell Automation Connected Components Workbench v12.00.00 and prior does not sanitize paths... High Unreviewed
CVE-2021-27473 was published Mar 24, 2022
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal... Moderate Unreviewed
CVE-2022-25266 was published Mar 25, 2022
Some commands used by the Rockwell Automation ISaGRAF Runtime Versions 4.x and 5.x eXchange Layer... Critical Unreviewed
CVE-2020-25176 was published Mar 19, 2022
An issue was discovered in xmppserver jar in the XMPP Server component of the JIve platform, as... High Unreviewed
CVE-2021-45968 was published Mar 19, 2022
BigAnt Software BigAnt Server v5.6.06 was discovered to be vulnerable to directory traversal... High Unreviewed
CVE-2022-23347 was published Mar 22, 2022
Path Traversal in GitHub repository prasathmani/tinyfilemanager prior to 2.4.7. Critical Unreviewed
CVE-2022-1000 was published Mar 18, 2022
Tempfile on Windows path traversal vulnerability High
CVE-2021-28966 was published for tmpdir (RubyGems) May 6, 2021
Path traversal in elFinder.NetCore High
CVE-2021-23428 was published for elFinder.NetCore (NuGet) Sep 2, 2021
Directory traversal vulnerability in JRadio (com_jradio) component before 1.5.1 for Joomla!... High Unreviewed
CVE-2010-4719 was published May 17, 2022
Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1... Moderate Unreviewed
CVE-2010-4622 was published May 17, 2022
Directory traversal vulnerability in the JotLoader (com_jotloader) component 2.2.1 for Joomla!... Moderate Unreviewed
CVE-2010-4617 was published May 17, 2022
Directory traversal vulnerability in index.php in OrangeHRM 2.6.0.1 allows remote attackers to... Moderate Unreviewed
CVE-2010-4798 was published May 17, 2022
Directory traversal vulnerability in admin/updatelist.php in BaconMap 1.0 allows remote attackers... Moderate Unreviewed
CVE-2010-4801 was published May 17, 2022
Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions,... Moderate Unreviewed
CVE-2011-0405 was published May 17, 2022
Directory traversal vulnerability in system/system.php in Zwii 2.1.1, when magic_quotes_gpc is... Moderate Unreviewed
CVE-2011-0505 was published May 17, 2022
Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 5.1... Moderate Unreviewed
CVE-2011-0494 was published May 17, 2022
Directory traversal vulnerability in modules/profile/user.php in Ax Developer CMS (AxDCMS) 0.1.1... Moderate Unreviewed
CVE-2011-0506 was published May 17, 2022
Directory traversal vulnerability in Sybase EAServer 6.x before 6.3 ESD#2, as used in Appeon,... High Unreviewed
CVE-2011-0497 was published May 17, 2022
Directory traversal vulnerability in core/lib/router.php in LotusCMS Fraise 3.0, when... Moderate Unreviewed
CVE-2011-0518 was published May 17, 2022
When connecting to a certain port Axeda agent (All versions) and Axeda Desktop Server for Windows... High Unreviewed
CVE-2022-25249 was published Mar 17, 2022
Path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File... High Unreviewed
CVE-2021-45010 was published Mar 16, 2022
The Server component of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports... High Unreviewed
CVE-2022-22771 was published Mar 16, 2022
The Simple Download Monitor WordPress plugin before 3.9.5 allows users with a role as low as... Moderate Unreviewed
CVE-2021-24692 was published Mar 15, 2022
Path Traversal in Gitea Moderate
CVE-2021-29134 was published for code.gitea.io/gitea (Go) Mar 16, 2022
An issue was discovered in PONTON X/P Messenger before 3.11.2. Due to path traversal in private... Critical Unreviewed
CVE-2021-45887 was published Mar 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database