Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,902
Maven
5,000+
npm
3,631
NuGet
638
pip
3,246
Pub
10
RubyGems
863
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

6,011 advisories

Loading
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... High Unreviewed
CVE-2024-7782 was published Aug 20, 2024
A vulnerability, which was classified as problematic, has been found in FastAdmin up to 1.3.3... Moderate Unreviewed
CVE-2024-7928 was published Aug 20, 2024
A vulnerability classified as critical has been found in ZZCMS 2023. Affected is an unknown... Moderate Unreviewed
CVE-2024-7926 was published Aug 19, 2024
A vulnerability classified as critical was found in ZZCMS 2023. Affected by this vulnerability is... Moderate Unreviewed
CVE-2024-7927 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43328 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43345 was published Aug 19, 2024
A vulnerability was found in ZZCMS 2023. It has been declared as critical. This vulnerability... Moderate Unreviewed
CVE-2024-7924 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43248 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... Moderate Unreviewed
CVE-2024-43281 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43232 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43271 was published Aug 19, 2024
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in... High Unreviewed
CVE-2024-43221 was published Aug 19, 2024
Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library Files High
CVE-2024-43399 was published for mobsf (pip) Aug 19, 2024
bulutenes
The BackWPup plugin for WordPress is vulnerable to Directory Traversal in versions up to, and... Moderate Unreviewed
CVE-2023-5505 was published Aug 17, 2024
An arbitrary file deletion vulnerability exists in the admin/del.php file at line 62 in ZZCMS... Moderate Unreviewed
CVE-2024-43011 was published Aug 16, 2024
The JetElements plugin for WordPress is vulnerable to Local File Inclusion in all versions up to,... High Unreviewed
CVE-2024-7145 was published Aug 16, 2024
The JetTabs for Elementor plugin for WordPress is vulnerable to Local File Inclusion in all... High Unreviewed
CVE-2024-7146 was published Aug 16, 2024
An issue in Super easy enterprise management system v.1.0.0 and before allows a local attacker to... Moderate Unreviewed
CVE-2024-42680 was published Aug 15, 2024
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12... Critical Unreviewed
CVE-2024-7263 was published Aug 15, 2024
Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12... Critical Unreviewed
CVE-2024-7262 was published Aug 15, 2024
A Local File Inclusion vulnerability has been found in ComfortKey, a product of Celsius Benelux.... High Unreviewed
CVE-2024-27120 was published Aug 14, 2024
webcrack has an Arbitrary File Write Vulnerability on Windows when Parsing and Saving a Malicious Bundle High
CVE-2024-43373 was published for webcrack (npm) Aug 14, 2024
SteakEnthusiast
Magento Open Source Path Traversal vulnerability Moderate
CVE-2024-39406 was published for magento/community-edition (Composer) Aug 14, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an... High Unreviewed
CVE-2024-39399 was published Aug 14, 2024
Path traversal in the skin management component of Ivanti Avalanche 6.3.1 allows a remote... High Unreviewed
CVE-2024-38652 was published Aug 14, 2024
ProTip! Advisories are also available from the GraphQL API