Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
21
Go
2,094
Maven
5,000+
npm
3,757
NuGet
678
pip
3,444
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

39 advisories

Loading
Multiple relative path traversal vulnerabilities [CWE-23] in Fortinet FortiManager version 7.4.0... Moderate Unreviewed
CVE-2024-32116 was published Nov 12, 2024
A relative path traversal vulnerability [CWE-23] in Fortinet FortiManager version 7.4.0 through... Moderate Unreviewed
CVE-2024-32115 was published Jan 14, 2025
A relative path traversal in Fortinet FortiRecorder [CWE-23] version 7.2.0 through 7.2.1 and... Moderate Unreviewed
CVE-2024-46664 was published Jan 14, 2025
A vulnerability classified as critical was found in Guangzhou Huayi Intelligent Technology Jeewms... Moderate Unreviewed
CVE-2025-0390 was published Jan 11, 2025
A vulnerability classified as problematic was found in Tsinghua Unigroup Electronic Archives... Moderate Unreviewed
CVE-2025-0225 was published Jan 5, 2025
A vulnerability was found in Dahua IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z and IPC-HDW1200S... Moderate Unreviewed
CVE-2024-13130 was published Jan 5, 2025
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2... Moderate Unreviewed
CVE-2024-12897 was published Dec 23, 2024
The topm-client from Chunghwa Telecom has an Arbitrary File Read vulnerability. The application... Moderate Unreviewed
CVE-2024-12645 was published Dec 16, 2024
A vulnerability was found in cjbi wetech-cms 1.0/1.1/1.2. It has been rated as problematic.... Moderate Unreviewed
CVE-2024-12482 was published Dec 12, 2024
Microsoft SharePoint Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-49062 was published Dec 12, 2024
The Team+ from TEAMPLUS TECHNOLOGY does not properly validate a specific page parameter, allowing... Moderate Unreviewed
CVE-2024-9923 was published Oct 14, 2024
In JetBrains TeamCity before 2024.07.3 path traversal leading to information disclosure was... Moderate Unreviewed
CVE-2024-47948 was published Oct 8, 2024
In JetBrains TeamCity before 2024.07.3 path traversal allowed backup file write to arbitrary... Moderate Unreviewed
CVE-2024-47949 was published Oct 8, 2024
Microsoft Defender for Endpoint for Linux Spoofing Vulnerability Moderate Unreviewed
CVE-2024-43614 was published Oct 8, 2024
An incorrect limitation of a path to a restricted directory (path traversal) has been detected in... Moderate Unreviewed
CVE-2024-9405 was published Oct 1, 2024
Windows Remote Desktop Licensing Service Information Disclosure Vulnerability Moderate Unreviewed
CVE-2024-38258 was published Sep 10, 2024
In JetBrains TeamCity before 2023.11.2 limited directory traversal was possible in the Kotlin DSL... Moderate Unreviewed
CVE-2024-24938 was published Feb 6, 2024
An improper Limitation of a Pathname to a Restricted Directory (Path Traversal) vulnerability in... Moderate Unreviewed
CVE-2024-22398 was published Mar 14, 2024
CHANGING Mobile One Time Password does not properly filter parameters for the file download... Moderate Unreviewed
CVE-2024-3122 was published Jul 1, 2024
Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 on DDMC... Moderate Unreviewed
CVE-2024-37138 was published Jun 26, 2024
An executable used in Rockwell Automation ThinManager ThinServer can be configured to enable an... Moderate Unreviewed
CVE-2023-2913 was published Jul 18, 2023
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics... Moderate Unreviewed
CVE-2022-42892 was published Jul 6, 2023
SAP CRM (WebClient UI) - versions S4FND 102, 103, 104, 105, 106, 107, WEBCUIF, 700, 701, 731, 730... Moderate Unreviewed
CVE-2023-29189 was published Apr 11, 2023
A vulnerability in the web-based interface of Cisco Unified Communications Manager IM & Presence... Moderate Unreviewed
CVE-2024-20310 was published Apr 3, 2024
A vulnerability in Cisco Emergency Responder could allow an authenticated, remote attacker to... Moderate Unreviewed
CVE-2024-20352 was published Apr 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database