Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

6,011 advisories

Loading
Path Traversal in the Ivanti CSA before 4.6 Patch 519 allows a remote unauthenticated attacker to... Critical Unreviewed
CVE-2024-8963 was published Sep 19, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the... Critical Unreviewed
CVE-2024-46375 was published Sep 18, 2024
Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the... Critical Unreviewed
CVE-2024-46376 was published Sep 18, 2024
Mesop has a local file Inclusion via static file serving functionality High
CVE-2024-45601 was published for mesop (pip) Sep 18, 2024
Letm3through
Camaleon CMS vulnerable to remote code execution through code injection (GHSL-2024-185) High
GHSA-7x4w-cj9r-h4v9 was published for camaleon_cms (RubyGems) Sep 18, 2024
texpert
Camaleon CMS vulnerable to arbitrary path traversal (GHSL-2024-183) High
CVE-2024-46987 was published for camaleon_cms (RubyGems) Sep 18, 2024
texpert
Camaleon CMS affected by arbitrary file write to RCE (GHSL-2024-182) High
CVE-2024-46986 was published for camaleon_cms (RubyGems) Sep 18, 2024
texpert
An authenticated Path Traversal vulnerabilities exists in the ArubaOS. Successful exploitation of... High Unreviewed
CVE-2024-42501 was published Sep 17, 2024
czim/file-handling vulnerable to SSRF and directory traversal Moderate
CVE-2024-47049 was published for czim/file-handling (Composer) Sep 17, 2024
Contao affected by directory traversal in the file selector widget Moderate
CVE-2024-45604 was published for contao/core-bundle (Composer) Sep 17, 2024
usdResponsibleDisclosure
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13... High Unreviewed
CVE-2024-44167 was published Sep 17, 2024
The issue was addressed with improved checks. This issue is fixed in iOS 18 and iPadOS 18, macOS... High Unreviewed
CVE-2024-27869 was published Sep 17, 2024
The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that... Critical Unreviewed
CVE-2024-8752 was published Sep 16, 2024
A vulnerability, which was classified as problematic, has been found in xiaohe4966 TpMeCMS up to... Moderate Unreviewed
CVE-2024-8876 was published Sep 16, 2024
A vulnerability classified as critical was found in vedees wcms up to 0.3.2. Affected by this... Moderate Unreviewed
CVE-2024-8875 was published Sep 16, 2024
Composio Path Traversal vulnerability Moderate
CVE-2024-8865 was published for composio-core (pip) Sep 16, 2024
A vulnerability was found in JFinalCMS up to 1.0. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2024-8782 was published Sep 13, 2024
A path traversal vulnerability exists in the Rockwell Automation affected product. If exploited,... High Unreviewed
CVE-2024-7961 was published Sep 12, 2024
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 3.0.6. It has been... Moderate Unreviewed
CVE-2024-8707 was published Sep 12, 2024
A vulnerability was found in JFinalCMS up to 20240903. It has been classified as problematic.... Moderate Unreviewed
CVE-2024-8706 was published Sep 12, 2024
A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. This... Moderate Unreviewed
CVE-2024-8694 was published Sep 11, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Critical Unreviewed
CVE-2024-7609 was published Sep 11, 2024
A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet... Moderate Unreviewed
CVE-2024-21753 was published Sep 10, 2024
phpok v3.0 was discovered to contain an arbitrary file read vulnerability via the component ... High Unreviewed
CVE-2024-44867 was published Sep 10, 2024
Arbitrary File Read vulnerability in Xi'an Daxi Information Technology Co., Ltd OfficeWeb365 v.7... High Unreviewed
CVE-2024-37728 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API