Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,300
NuGet
760
pip
4,078
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

54 advisories

Loading
Path Traversal: '.../...//' vulnerability in WPMU DEV - Your All-in-One WordPress Platform Smush... Moderate Unreviewed
CVE-2025-22288 was published Nov 6, 2025
An ACAP configuration file lacked sufficient input validation, which could allow a path traversal... Moderate Unreviewed
CVE-2025-5454 was published Nov 11, 2025
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the `--inc... Moderate Unreviewed
CVE-2024-12087 was published Jan 14, 2025
A flaw was found in rsync. When using the `--safe-links` option, rsync fails to properly verify... Moderate Unreviewed
CVE-2024-12088 was published Jan 14, 2025
Path Traversal vulnerability in opentext Flipper allows Absolute Path Traversal.  The... Moderate Unreviewed
CVE-2025-8051 was published Oct 20, 2025
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release... Moderate Unreviewed
CVE-2025-43907 was published Oct 7, 2025
Path Traversal vulnerability in CodeManas Search with Typesense allows Path Traversal. This issue... Moderate Unreviewed
CVE-2025-26876 was published Feb 25, 2025
The File Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up to,... Moderate Unreviewed
CVE-2024-2654 was published Apr 9, 2024
Multiple vulnerabilities in Cisco IOS XE Software of could allow an authenticated, local attacker... Moderate Unreviewed
CVE-2025-20313 was published Sep 24, 2025
Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) a Path Traversal: ... Moderate Unreviewed
CVE-2025-43886 was published Sep 10, 2025
Path Traversal: '.../...//' vulnerability in AA-Team Pro Bulk Watermark Plugin for WordPress... Moderate Unreviewed
CVE-2025-4956 was published Aug 30, 2025
The Mobile Access Portal's File Share application is vulnerable to a directory traversal attack,... Moderate Unreviewed
CVE-2024-52885 was published Aug 6, 2025
Path Traversal: '.../...//' vulnerability in Printeers Printeers Print & Ship allows Path... Moderate Unreviewed
CVE-2025-48081 was published Aug 27, 2025
Path Traversal vulnerability in miniOrange Prevent files / folders access allows Path Traversal.... Moderate Unreviewed
CVE-2025-53561 was published Aug 20, 2025
Path Traversal vulnerability in BoldGrid Post and Page Builder by BoldGrid – Visual Drag and Drop... Moderate Unreviewed
CVE-2025-52712 was published Aug 14, 2025
Path Traversal: '.../...//' vulnerability in Themewinter Eventin allows Path Traversal.This issue... Moderate Unreviewed
CVE-2024-56213 was published Dec 31, 2024
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7 and 9.1.10, and Splunk Cloud Platform... Moderate Unreviewed
CVE-2025-20320 was published Jul 7, 2025
A path traversal vulnerability in RSFirewall component 2.9.7 - 3.1.5 for Joomla was discovered.... Moderate Unreviewed
CVE-2025-27445 was published Jun 5, 2025
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).... Moderate Unreviewed
CVE-2025-40573 was published May 13, 2025
io.jmix.localfs:jmix-localfs has a Path Traversal in Local File Storage Moderate
CVE-2025-32950 was published for io.jmix.localfs:jmix-localfs (Maven) Apr 22, 2025
shadowsock5 AnonySE26
Credited to shadowsock5 and AnonySE26
Path Traversal: '.../...//' vulnerability in ctltwp Section Widget allows Path Traversal.This... Moderate Unreviewed
CVE-2025-46441 was published May 19, 2025
Overview   The product uses external input to construct a pathname that should be within a... Moderate Unreviewed
CVE-2025-24907 was published Apr 17, 2025
Overview   The product uses external input to construct a pathname that should be within a... Moderate Unreviewed
CVE-2025-24908 was published Apr 17, 2025
Path Traversal vulnerability in Quý Lê 91 Administrator Z allows Path Traversal. This issue... Moderate Unreviewed
CVE-2025-39598 was published Apr 16, 2025
Path Traversal vulnerability in NotFound WPJobBoard allows Path Traversal. This issue affects... Moderate Unreviewed
CVE-2025-30966 was published Apr 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database