GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,134
Erlang
29
GitHub Actions
19
Go
1,941
Maven
5,000+
npm
3,681
NuGet
650
pip
3,298
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
42 advisories
Filter by severity
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics...
Moderate
Unreviewed
CVE-2022-42892
was published
Jul 6, 2023
SAP CRM (WebClient UI) - versions S4FND 102, 103, 104, 105, 106, 107, WEBCUIF, 700, 701, 731, 730...
Moderate
Unreviewed
CVE-2023-29189
was published
Apr 11, 2023
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote...
Moderate
Unreviewed
CVE-2023-20066
was published
Mar 23, 2023
Kubernetes vulnerable to path traversal
Moderate
CVE-2022-3162
was published
for
github.com/kubernetes/kubernetes
(Go)
Mar 1, 2023
A vulnerability was found in MuYuCMS 2.2. It has been classified as problematic. Affected is an...
Moderate
Unreviewed
CVE-2023-1043
was published
Feb 26, 2023
A vulnerability in the NETCONF service of Cisco Network Services Orchestrator (NSO) could allow...
Moderate
Unreviewed
CVE-2023-20040
was published
Jan 20, 2023
GuardDog vulnerable to arbitrary file write when scanning a specially-crafted PyPI package
Moderate
CVE-2022-23531
was published
for
guarddog
(pip)
Dec 2, 2022
DNN vulnerable to Relative Path Traversal
Moderate
CVE-2022-2922
was published
for
DotNetNuke.Core
(NuGet)
Oct 1, 2022
Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables...
Moderate
Unreviewed
CVE-2022-2106
was published
Jun 28, 2022
The AGG Software Web Server version 4.0.40.1014 and prior is vulnerable to a path traversal...
Moderate
Unreviewed
CVE-2021-32964
was published
May 25, 2022
Advantech WebAccess/SCADA Versions 9.0.1 and prior is vulnerable to a directory traversal, which...
Moderate
Unreviewed
CVE-2021-32954
was published
May 24, 2022
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow...
Moderate
Unreviewed
CVE-2019-19287
was published
May 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** A post-authentication arbitrary file read vulnerability impacting...
Moderate
Unreviewed
CVE-2022-22279
was published
Apr 14, 2022
Directory Traversal in nhouston
Moderate
CVE-2014-8883
was published
for
nhouston
(npm)
Aug 31, 2020
Directory traversal attack in Spring Cloud Config
Moderate
CVE-2020-5405
was published
for
org.springframework.cloud:spring-cloud-config-server
(Maven)
Jun 5, 2020
ProTip!
Advisories are also available from the
GraphQL API