Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

18 advisories

Loading
IDExpert from CHANGING Information Technology does not properly validate a specific parameter in... Moderate Unreviewed
CVE-2024-10651 was published Nov 1, 2024
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center ... Moderate Unreviewed
CVE-2024-20379 was published Oct 23, 2024
PhpSpreadsheet allows absolute path traversal and Server-Side Request Forgery in HTML writer when embedding images is enabled Moderate
CVE-2024-45291 was published for phpoffice/phpspreadsheet (Composer) Oct 7, 2024
emilvirkki
OMFLOW from The SYSCOM Group does not properly validate user input of the download functionality,... Moderate Unreviewed
CVE-2024-8778 was published Sep 16, 2024
Digiwin EasyFlow .NET lacks proper access control for specific functionality, and the... Moderate Unreviewed
CVE-2024-7323 was published Aug 2, 2024
An improper absolute path traversal vulnerability was reported for the Ready For application... Moderate Unreviewed
CVE-2023-41830 was published May 3, 2024
An attacker could potentially exploit this vulnerability, leading to files being read from the... Moderate Unreviewed
CVE-2023-5390 was published Jan 31, 2024
Gotham Table service and Forward App were found to be vulnerable to a Path traversal issue... Moderate Unreviewed
CVE-2023-30970 was published Jan 29, 2024
A vulnerability has been found in DedeCMS up to 5.7.100 and classified as critical. Affected by... Moderate Unreviewed
CVE-2023-5022 was published Sep 17, 2023
A vulnerability, which was classified as problematic, has been found in Chengdu Flash Flood... Moderate Unreviewed
CVE-2023-4172 was published Aug 6, 2023
Path Traversal vulnerability in SonicWall GMS and Analytics allows a remote authenticated... Moderate Unreviewed
CVE-2023-34135 was published Jul 13, 2023
A vulnerability has been found in Weaver OA up to 9.5 and classified as problematic. This... Moderate Unreviewed
CVE-2023-2765 was published May 17, 2023
A vulnerability, which was classified as problematic, has been found in moxi624 Mogu Blog v2 up... Moderate Unreviewed
CVE-2023-2101 was published Apr 15, 2023
Remote file existence check vulnerability in `mlflow server` and `mlflow ui` CLIs Moderate
CVE-2023-1176 was published for mlflow (pip) Mar 24, 2023
Absolute Path Traversal vulnerability in GetImage in QSAN Storage Manager allows remote... Moderate Unreviewed
CVE-2021-32506 was published May 24, 2022
Absolute Path Traversal vulnerability in FileDownload in QSAN Storage Manager allows remote... Moderate Unreviewed
CVE-2021-32507 was published May 24, 2022
Local File Inclusion vulnerability of the omni-directional communication system allows remote... Moderate Unreviewed
CVE-2021-30173 was published May 24, 2022
Path Traversal in scout-browser Moderate
CVE-2022-1554 was published for scout-browser (pip) May 4, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database