GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
92
GitHub Actions
54
Go
4,217
Maven
5,000+
npm
5,000+
NuGet
1,021
pip
5,000+
Pub
13
RubyGems
1,103
Rust
1,443
Swift
61
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
66 advisories
Filter by severity
SAP Fiori Launchpad allows attackers to craft malicious URLs that triggers arbitrary service...
Moderate
Unreviewed
CVE-2026-24315
was published
Jun 9, 2026
When running in Appliance mode, a directory traversal vulnerability exists in an undisclosed...
Moderate
Unreviewed
CVE-2026-24464
was published
May 13, 2026
An ACAP configuration file lacked sufficient input validation, which could allow a path traversal...
Moderate
Unreviewed
CVE-2026-0804
was published
May 12, 2026
A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with...
Moderate
Unreviewed
CVE-2026-0205
was published
Apr 29, 2026
A flaw was found in rsync. When using the `--safe-links` option, rsync fails to properly verify...
Moderate
Unreviewed
CVE-2024-12088
was published
Jan 14, 2025
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc...
Moderate
Unreviewed
CVE-2024-12087
was published
Jan 14, 2025
The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-5481
was published
Jun 7, 2024
PowerStore, contains a Path Traversal vulnerability in the Service user. A low privileged...
Moderate
Unreviewed
CVE-2026-28265
was published
Apr 1, 2026
Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery...
Moderate
Unreviewed
CVE-2024-49258
was published
Oct 16, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in...
Moderate
Unreviewed
CVE-2024-38706
was published
Jul 12, 2024
: Path Traversal: '.../...//' vulnerability in CYAN Backup allows Path Traversal.This issue...
Moderate
Unreviewed
CVE-2024-52390
was published
Nov 19, 2024
Vintage,
member of the AXIS OS Bug Bounty Program, has found that the VAPIX API create_overlay...
Moderate
Unreviewed
CVE-2023-5800
was published
Feb 5, 2024
Path Traversal: '.../...//' vulnerability in Bogdan Bendziukov Squeeze squeeze allows Path...
Moderate
Unreviewed
CVE-2026-32415
was published
Mar 13, 2026
Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability
Moderate
Unreviewed
CVE-2026-26124
was published
Mar 6, 2026
Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and...
Moderate
Unreviewed
CVE-2026-1763
was published
Feb 10, 2026
Path Traversal: '.../...//' vulnerability in primersoftware Primer MyData for Woocommerce primer...
Moderate
Unreviewed
CVE-2025-69325
was published
Feb 20, 2026
A
vulnerability in Brocade Fabric OS before 9.2.1c2 could allow an
authenticated attacker with...
Moderate
Unreviewed
CVE-2025-58381
was published
Feb 3, 2026
A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with...
Moderate
Unreviewed
CVE-2025-58380
was published
Feb 3, 2026
Path Traversal: '.../...//' vulnerability in AA-Team Pro Bulk Watermark Plugin for WordPress...
Moderate
Unreviewed
CVE-2025-28973
was published
Dec 31, 2025
Path Traversal: '.../...//' vulnerability in WPMU DEV - Your All-in-One WordPress Platform Smush...
Moderate
Unreviewed
CVE-2025-22288
was published
Nov 6, 2025
Path Traversal: '.../...//' vulnerability in WordPress.org Health Check & Troubleshooting health...
Moderate
Unreviewed
CVE-2025-64253
was published
Dec 16, 2025
Path Traversal: '.../...//' vulnerability in SigmaPlugin Advanced Database Cleaner PRO allows...
Moderate
Unreviewed
CVE-2025-46256
was published
Jan 7, 2026
A Path Traversal vulnerability in usbmuxd allows local users to escalate to the service user.This...
Moderate
Unreviewed
CVE-2025-66004
was published
Dec 10, 2025
An ACAP configuration file lacked sufficient input validation, which could allow a path traversal...
Moderate
Unreviewed
CVE-2025-5454
was published
Nov 11, 2025
Path Traversal vulnerability in opentext Flipper allows Absolute Path Traversal.
The...
Moderate
Unreviewed
CVE-2025-8051
was published
Oct 20, 2025
ProTip!
Advisories are also available from the
GraphQL API