GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,794

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

155 advisories

Filter by severity

Sort by

Least recently updated

Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and... Moderate Unreviewed

CVE-2024-13791 was published Feb 14, 2025

A CWE-23 "Relative Path Traversal" in the file upload mechanism in Q-Free MaxTime less than or... High Unreviewed

CVE-2025-26349 was published Feb 12, 2025

Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance... High Unreviewed

CVE-2023-30630 was published Apr 13, 2023

A vulnerability has been found in Safetytest Cloud-Master Server up to 1.1.1 and classified as... Moderate Unreviewed

CVE-2025-1086 was published Feb 7, 2025

An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a... Critical Unreviewed

CVE-2021-40870 was published May 24, 2022

Dell OpenManage Enterprise, v4.0 and prior, contain(s) a path traversal vulnerability. An... Moderate Unreviewed

CVE-2024-25944 was published Mar 29, 2024

A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and... Moderate Unreviewed

CVE-2024-46664 was published Jan 14, 2025

In JetBrains YouTrack before 2024.3.51866 system takeover was possible through path traversal in... High Unreviewed

CVE-2024-54154 was published Dec 4, 2024

Apache Solr Relative Path Traversal vulnerability Moderate

CVE-2024-52012 was published for org.apache.solr:solr-core (Maven) Jan 27, 2025

Fedora Repository 3.8.1 allows path traversal when extracting uploaded archives ("Zip Slip"). A... High Unreviewed

CVE-2025-23011 was published Jan 23, 2025

Relative Path Traversal vulnerability in Webangon The Pack Elementor addons allows PHP Local File... High Unreviewed

CVE-2024-50453 was published Oct 28, 2024

Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiManager version 7.4.0... Moderate Unreviewed

CVE-2024-32116 was published Nov 12, 2024

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ... Low Unreviewed

CVE-2024-35274 was published Nov 12, 2024

A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through... Moderate Unreviewed

CVE-2024-32115 was published Jan 14, 2025

A vulnerability classified as critical was found in Guangzhou Huayi Intelligent Technology Jeewms... Moderate Unreviewed

CVE-2025-0390 was published Jan 11, 2025

A vulnerability classified as problematic was found in Tsinghua Unigroup Electronic Archives... Moderate Unreviewed

CVE-2025-0225 was published Jan 5, 2025

A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S... Moderate Unreviewed

CVE-2024-13130 was published Jan 5, 2025

@backstage/plugin-techdocs-backend storage bucket Directory Traversal vulnerability High

CVE-2024-45816 was published for @backstage/plugin-techdocs-backend (npm) Sep 17, 2024

A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2... Moderate Unreviewed

CVE-2024-12897 was published Dec 23, 2024

A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5... Critical Unreviewed

CVE-2023-34990 was published Dec 18, 2024

A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0... High Unreviewed

CVE-2023-42791 was published Feb 20, 2024

In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions ... High Unreviewed

CVE-2024-27199 was published Mar 4, 2024

The topm-client from Chunghwa Telecom has an Arbitrary File Read vulnerability. The application... Moderate Unreviewed

CVE-2024-12645 was published Dec 16, 2024

TenderDocTransfer from Chunghwa Telecom has an Arbitrary File Write vulnerability. The... High Unreviewed

CVE-2024-12642 was published Dec 16, 2024

A vulnerability was found in cjbi wetech-cms 1.0/1.1/1.2. It has been rated as problematic.... Moderate Unreviewed

CVE-2024-12482 was published Dec 12, 2024

Previous 1 2 3 4 5 6 7 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

155 advisories