Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,362
Erlang
33
GitHub Actions
22
Go
2,134
Maven
5,000+
npm
3,797
NuGet
687
pip
3,473
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,782 advisories

Loading
MasterSAM Star Gate 11 is vulnerable to directory traversal via /adama/adama/downloadService. An... Moderate Unreviewed
CVE-2024-55457 was published Feb 20, 2025
IBM OpenPages with Watson 8.3 and 9.0  IBM OpenPages could allow a remote attacker to traverse... Moderate Unreviewed
CVE-2024-49780 was published Feb 20, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-1035 was published Feb 18, 2025
The LuxCal Web Calendar prior to 5.3.3M (MySQL version) and prior to 5.3.3L (SQLite version)... Moderate Unreviewed
CVE-2025-25223 was published Feb 18, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2025-26779 was published Feb 17, 2025
A vulnerability classified as problematic has been found in Seventh D-Guard up to 20250206. This... Moderate Unreviewed
CVE-2025-1357 was published Feb 16, 2025
A vulnerability has been found in CmsEasy 7.7.7.9 and classified as problematic. Affected by this... Moderate Unreviewed
CVE-2025-1336 was published Feb 16, 2025
A vulnerability, which was classified as problematic, was found in CmsEasy 7.7.7.9. Affected is... Moderate Unreviewed
CVE-2025-1335 was published Feb 16, 2025
IBM Power Hardware Management Console V10.3.1050.0 could allow an authenticated user to traverse... Moderate Unreviewed
CVE-2024-56477 was published Feb 14, 2025
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-47265 was published Feb 13, 2025
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-47264 was published Feb 13, 2025
A vulnerability classified as problematic has been found in olajowon Loggrove up to... Moderate Unreviewed
CVE-2025-1228 was published Feb 13, 2025
Directory Traversal vulnerability in Ianproxy v.0.1 and before allows a remote attacker to obtain... Moderate Unreviewed
CVE-2024-57777 was published Feb 12, 2025
An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability ... Moderate Unreviewed
CVE-2024-36508 was published Feb 11, 2025
Path traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to... Moderate Unreviewed
CVE-2024-11771 was published Feb 11, 2025
Path-Traversal vulnerability in Revolution Pi version 2022-07-28-revpi-buster from KUNBUS GmbH.... Moderate Unreviewed
CVE-2024-8685 was published Feb 10, 2025
A vulnerability classified as critical has been found in CmsEasy 7.7.7.9. This affects the... Moderate Unreviewed
CVE-2025-1106 was published Feb 7, 2025
xml2rfc has file inclusion irregularities Moderate
GHSA-432c-wxpg-m4q3 was published for xml2rfc (pip) Feb 7, 2025
Directory Traversal in File Upload in Gleamtech FileVista 9.2.0.0 allows remote attackers to... Moderate Unreviewed
CVE-2024-57248 was published Feb 7, 2025
A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path... Moderate Unreviewed
CVE-2024-54909 was published Feb 7, 2025
The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is... Moderate Unreviewed
CVE-2025-0859 was published Feb 6, 2025
IBM App Connect enterprise 12.0.1.0 through 12.0.12.10 and 13.0.1.0 through 13.0.2.1 could allow... Moderate Unreviewed
CVE-2025-0799 was published Feb 6, 2025
Browsershot Local File Inclusion Moderate
CVE-2025-1026 was published for spatie/browsershot (Composer) Feb 5, 2025
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'), Files or... Moderate Unreviewed
CVE-2024-48019 was published Feb 4, 2025
Vitest browser mode serves arbitrary files Moderate
CVE-2025-24963 was published for @vitest/browser (npm) Feb 4, 2025
sapphi-red
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database