GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,046
Maven
5,000+
npm
3,737
NuGet
663
pip
3,415
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
142 advisories
Filter by severity
A relative path traversal [CWE-23] in Fortinet FortiADC version 7.2.0 and before 7.1.1 allows a...
High
Unreviewed
CVE-2023-27993
was published
May 4, 2023
A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version 7.2.0 through 7.2.3,...
Low
Unreviewed
CVE-2022-42474
was published
Jun 13, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
Moderate
Unreviewed
CVE-2022-42892
was published
Jul 6, 2023
SmartBPM.NET has a vulnerability of using hard-coded authentication key. An unauthenticated...
High
Unreviewed
CVE-2023-37288
was published
Jul 10, 2023
Relative path traversal in the Zoom Client SDK before version 5.15.0 may allow an unauthorized...
Low
Unreviewed
CVE-2023-34117
was published
Jul 11, 2023
An executable used in Rockwell Automation ThinManager ThinServer can be configured to enable an...
Moderate
Unreviewed
CVE-2023-2913
was published
Jul 18, 2023
In Keysight Geolocation Server v2.4.2 and prior, an attacker could upload a specially...
High
Unreviewed
CVE-2023-34394
was published
Jul 20, 2023
Relative Path Traversal in GitHub repository mintplex-labs/anything-llm prior to 0.0.1.
High
Unreviewed
CVE-2023-4897
was published
Sep 11, 2023
Cecil Path Traversal vulnerability
High
CVE-2023-4914
was published
for
cecil/cecil
(Composer)
Sep 12, 2023
sudo-rs Session File Relative Path Traversal vulnerability
Low
CVE-2023-42456
was published
for
sudo-rs
(Rust)
Sep 21, 2023
Path traversal allows leaking out-of-bound Helm charts from Argo CD repo-server
Moderate
CVE-2023-40026
was published
for
github.com/argoproj/argo-cd
(Go)
Sep 27, 2023
Aqua Drive, in its 2.4 version, is vulnerable to a relative path traversal vulnerability. By...
High
Unreviewed
CVE-2023-3701
was published
Oct 4, 2023
Relative path traversal vulnerability in Setelsa Security's ConacWin CB, in its 3.8.2.2 version...
High
Unreviewed
CVE-2023-3512
was published
Oct 4, 2023
Parse Server may crash when uploading file without extension
High
CVE-2023-46119
was published
for
parse-server
(npm)
Oct 24, 2023
A CWE-23: Relative Path Traversal vulnerability exists in Telit Cinterion BGS5, Telit Cinterion...
Moderate
Unreviewed
CVE-2023-47613
was published
Nov 9, 2023
A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5...
High
Unreviewed
CVE-2023-42783
was published
Nov 14, 2023
Ansible galaxy-importer Path Traversal vulnerability
Moderate
CVE-2023-5189
was published
for
galaxy-importer
(pip)
Nov 15, 2023
A vulnerability classified as critical was found in jeecgboot JimuReport up to 1.6.1. Affected by...
Moderate
Unreviewed
CVE-2023-6307
was published
Nov 27, 2023
A path traversal vulnerability has been detected in Repox, which allows an attacker to read...
High
Unreviewed
CVE-2023-6722
was published
Dec 13, 2023
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where, when it is...
High
Unreviewed
CVE-2023-31036
was published
Jan 12, 2024
Unsecured endpoints in the jupyter-lsp server extension
High
CVE-2024-22415
was published
for
jupyter-lsp
(pip)
Jan 18, 2024
In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can append path...
Moderate
Unreviewed
CVE-2024-22096
was published
Feb 2, 2024
: Relative Path Traversal vulnerability in B&R Industrial Automation Automation Studio allows...
Moderate
Unreviewed
CVE-2021-22281
was published
Feb 2, 2024
In JetBrains TeamCity before 2023.11.2 limited directory traversal was possible in the Kotlin DSL...
Moderate
Unreviewed
CVE-2024-24938
was published
Feb 6, 2024
In JetBrains IntelliJ IDEA before 2023.3.3 path traversal was possible when unpacking archives
Low
Unreviewed
CVE-2024-24940
was published
Feb 6, 2024
ProTip!
Advisories are also available from the
GraphQL API