GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
143 advisories
Filter by severity
If exploited an attacker could traverse the file system to access
files or directories that...
Unknown
Unreviewed
CVE-2024-2461
was published
Jun 11, 2024
Path traversal vulnerability in the web server of the Toshiba printer enables attacker to...
High
Unreviewed
CVE-2024-3497
was published
Jun 14, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 on DDMC...
Moderate
Unreviewed
CVE-2024-37138
was published
Jun 26, 2024
Relative Path Traversal in GitHub repository stitionai/devika prior to -.
High
Unreviewed
CVE-2024-5547
was published
Jun 27, 2024
CHANGING Mobile One Time Password does not properly filter parameters for the file download...
Moderate
Unreviewed
CVE-2024-3122
was published
Jul 1, 2024
Relative Path Traversal in GitHub repository stitionai/devika prior to -.
High
Unreviewed
CVE-2024-6433
was published
Jul 10, 2024
Raiden MAILD Remote Management System from Team Johnlong Software has a Relative Path Traversal...
High
Unreviewed
CVE-2024-7693
was published
Aug 12, 2024
Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library Files
High
CVE-2024-43399
was published
for
mobsf
(pip)
Aug 19, 2024
Windows Remote Desktop Licensing Service Information Disclosure Vulnerability
Moderate
Unreviewed
CVE-2024-38258
was published
Sep 10, 2024
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43454
was published
Sep 10, 2024
@backstage/plugin-techdocs-backend storage bucket Directory Traversal vulnerability
High
CVE-2024-45816
was published
for
@backstage/plugin-techdocs-backend
(npm)
Sep 17, 2024
An incorrect limitation of a path to a restricted directory (path traversal) has been detected in...
Moderate
Unreviewed
CVE-2024-9405
was published
Oct 1, 2024
A vulnerability in Cisco Nexus Dashboard Fabric Controller (NDFC) could allow an authenticated,...
High
Unreviewed
CVE-2024-20449
was published
Oct 2, 2024
In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was...
Moderate
Unreviewed
CVE-2024-47948
was published
Oct 8, 2024
In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary...
Moderate
Unreviewed
CVE-2024-47949
was published
Oct 8, 2024
Microsoft Defender for Endpoint for Linux Spoofing Vulnerability
Moderate
Unreviewed
CVE-2024-43614
was published
Oct 8, 2024
Lord of Large Language Models (LoLLMs) path traversal vulnerability in the api open_personality_folder endpoint
Moderate
CVE-2024-6985
was published
for
lollms
(pip)
Oct 11, 2024
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing...
High
Unreviewed
CVE-2024-9922
was published
Oct 14, 2024
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing...
Moderate
Unreviewed
CVE-2024-9923
was published
Oct 14, 2024
In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user...
High
Unreviewed
CVE-2024-45731
was published
Oct 14, 2024
Enterprise Cloud Database from Ragic does not properly validate a specific page parameter,...
High
Unreviewed
CVE-2024-9983
was published
Oct 15, 2024
: Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Path...
High
Unreviewed
CVE-2024-47637
was published
Oct 16, 2024
Relative Path Traversal vulnerability in James Park Analyse Uploads allows Relative Path...
High
Unreviewed
CVE-2024-49253
was published
Oct 16, 2024
Administrative Management System from Wellchoose has a Path Traversal vulnerability, allowing...
High
Unreviewed
CVE-2024-10200
was published
Oct 21, 2024
ProTip!
Advisories are also available from the
GraphQL API