GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,988
Maven
5,000+
npm
3,704
NuGet
661
pip
3,332
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
68 advisories
Filter by severity
Directory traversal outside of SENDFILE_ROOT in django-sendfile2
Moderate
GHSA-6r3c-8xf3-ggrr
was published
for
django-sendfile2
(pip)
Jun 24, 2020
Remote Code Execution via traversal in TAL expressions
Moderate
GHSA-5pr9-v234-jw36
was published
for
Zope
(pip)
Jun 18, 2021
Path traversal in FreeTAKServer-UI
Moderate
CVE-2022-25511
was published
for
FreeTAKServer-UI
(pip)
Mar 12, 2022
Path Traversal in nemo-toolkit
Moderate
CVE-2022-22821
was published
for
nemo-toolkit
(pip)
Jan 11, 2022
Streamlit directory traversal vulnerability
Moderate
CVE-2022-35918
was published
for
streamlit
(pip)
Aug 6, 2022
Path Traversal in scout-browser
Moderate
CVE-2022-1554
was published
for
scout-browser
(pip)
May 4, 2022
OpenStack Cinder, glance, and Nova vulnerable to Path Traversal
Moderate
CVE-2022-47951
was published
for
cinder
(pip)
Jan 27, 2023
tripleo-ansible may disclose important configuration details from an OpenStack deployment
Moderate
CVE-2022-3146
was published
for
tripleo-ansible
(pip)
Mar 23, 2023
tripleo-ansible may disclose important configuration details from an OpenStack deployment
Moderate
CVE-2022-3101
was published
for
tripleo-ansible
(pip)
Mar 23, 2023
pgAdmin 4 vulnerable to directory traversal
Moderate
CVE-2023-0241
was published
for
pgadmin4
(pip)
Mar 27, 2023
pgAdmin 4 Path Traversal vulnerability
Moderate
CVE-2022-0959
was published
for
pgadmin4
(pip)
Mar 17, 2022
Mercurial Directory traversal vulnerability
Moderate
CVE-2008-2942
was published
for
mercurial
(pip)
May 1, 2022
Withdrawn Advisory: Pulp Improper Path Parsing
Moderate
CVE-2018-10917
was published
for
pulpcore
(pip)
May 13, 2022
•
withdrawn
Wagtail CRX CodeRed Extensions vulnerable to Path Traversal
Moderate
CVE-2021-46897
was published
for
coderedcms
(pip)
Oct 22, 2023
Ansible symlink attack vulnerability
Moderate
CVE-2023-5115
was published
for
ansible
(pip)
Dec 28, 2023
Pyramid static view path traversal up one directory
Moderate
CVE-2023-40587
was published
for
pyramid
(pip)
Aug 25, 2023
Whoogle Search Path Traversal vulnerability
Moderate
CVE-2024-22204
was published
for
whoogle-search
(pip)
Mar 14, 2024
Cobbler Path Traversal vulnerability
Moderate
CVE-2014-3225
was published
for
cobbler
(pip)
May 14, 2022
langchain vulnerable to path traversal
Moderate
CVE-2024-3571
was published
for
langchain
(pip)
Apr 16, 2024
Ansible galaxy-importer Path Traversal vulnerability
Moderate
CVE-2023-5189
was published
for
galaxy-importer
(pip)
Nov 15, 2023
Roundup Directory traversal vulnerability
Moderate
CVE-2004-1444
was published
for
Roundup
(pip)
Apr 29, 2022
MoinMoin Directory traversal vulnerability
Moderate
CVE-2008-0782
was published
for
moin
(pip)
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API