Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,359
Erlang
33
GitHub Actions
22
Go
2,126
Maven
5,000+
npm
3,787
NuGet
683
pip
3,467
Pub
12
RubyGems
894
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,312 advisories

Loading
Directory Traversal vulnerability in yeqifu carRental v.1.0 allows a remote attacker to obtain... High Unreviewed
CVE-2024-51376 was published Feb 13, 2025
In Progress® Telerik® Document Processing Libraries, versions prior to 2025 Q1 (2025.1.205),... High Unreviewed
CVE-2024-11343 was published Feb 12, 2025
In Progress® Telerik® UI for WinForms, versions prior to 2025 Q1 (2025.1.211), using the improper... High Unreviewed
CVE-2025-0332 was published Feb 12, 2025
Adobe Commerce versions 2.4.7-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are... High Unreviewed
CVE-2025-24406 was published Feb 11, 2025
SAP Supplier Relationship Management (Master Data Management Catalog) allows an unauthenticated... High Unreviewed
CVE-2025-25243 was published Feb 11, 2025
Local File Inclusion vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to... High Unreviewed
CVE-2024-55214 was published Feb 7, 2025
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to a... High Unreviewed
CVE-2024-52883 was published Feb 7, 2025
Directory Traversal vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to... High Unreviewed
CVE-2024-55213 was published Feb 7, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-25155 was published Feb 7, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-25163 was published Feb 7, 2025
An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform... High Unreviewed
CVE-2024-53586 was published Feb 7, 2025
Directory Traversal vulnerability in Zrlog backup-sql-file.jar v.3.0.31 allows a remote attacker... High Unreviewed
CVE-2024-57669 was published Feb 3, 2025
ChestnutCMS <=1.5.0 has a directory traversal vulnerability in contentcore.controller... High Unreviewed
CVE-2024-57451 was published Feb 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-24569 was published Feb 3, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-23819 was published Feb 3, 2025
Dell PowerProtect DD versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.20 contain a path... High Unreviewed
CVE-2024-51534 was published Feb 1, 2025
An issue in OpenPanel v0.3.4 to v0.2.1 allows attackers to execute a directory traversal in File... High Unreviewed
CVE-2024-53537 was published Jan 31, 2025
An issue found in the Copy and View functions in the File Manager component of OpenPanel v0.3.4... High Unreviewed
CVE-2024-53582 was published Jan 31, 2025
The WP Image Uploader plugin for WordPress is vulnerable to arbitrary file deletion due to... High Unreviewed
CVE-2024-13720 was published Jan 30, 2025
The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions... High Unreviewed
CVE-2024-13671 was published Jan 30, 2025
CMSimple 5.16 allows the user to read cms source code through manipulation of the file name in... High Unreviewed
CVE-2024-57549 was published Jan 28, 2025
Local privilege escalation due to incorrect assignment of privileges of temporary files in the... High Unreviewed
CVE-2025-0542 was published Jan 25, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2025-23422 was published Jan 24, 2025
The Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget... High Unreviewed
CVE-2024-13409 was published Jan 24, 2025
SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal... High Unreviewed
CVE-2024-57727 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database