GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,537
Composer 4,454
Erlang 33
GitHub Actions 22
Go 2,153
Maven 5,330
npm 3,818
NuGet 693
pip 3,492
Pub 12
RubyGems 902
Rust 903
Swift 38

Unreviewed advisories

All unreviewed 246,993

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

117 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability has been found in Shanxi Diankeyun Technology NODERP up to 6.0.2 and classified... Moderate Unreviewed

CVE-2024-1005 was published Jan 29, 2024

Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation... Moderate Unreviewed

CVE-2023-52112 was published Jan 16, 2024

Dell vApp Manager, versions prior to 9.2.4.x contain an arbitrary file read vulnerability. A... Moderate Unreviewed

CVE-2023-48661 was published Dec 14, 2023

The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory,... Moderate Unreviewed

CVE-2023-5907 was published Dec 11, 2023

Tyler Technologies Court Case Management Plus may store backups in a location that can be... Moderate Unreviewed

CVE-2023-6375 was published Nov 30, 2023

Improper input validation vulnerability in ChooserActivity prior to SMR Nov-2023 Release 1 allows... Moderate Unreviewed

CVE-2023-42534 was published Nov 13, 2023

A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Telit... Moderate Unreviewed

CVE-2023-47612 was published Nov 9, 2023

The Front End PM WordPress plugin before 11.4.3 does not block listing the contents of the... Moderate Unreviewed

CVE-2023-4930 was published Nov 6, 2023

The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the... Moderate Unreviewed

CVE-2023-4933 was published Oct 16, 2023

Files or Directories Accessible to External Parties in RDT400 in SICK APU allows an unprivileged... Moderate Unreviewed

CVE-2023-5101 was published Oct 9, 2023

File accessibility vulnerability in Delinea Secret Server, in its v10.9.000002 and v11.4.000002... Moderate Unreviewed

CVE-2023-4588 was published Sep 6, 2023

Inappropriate file type control in Zscaler Proxy versions 3.6.1.25 and prior allows local... Moderate Unreviewed

CVE-2023-41717 was published Aug 31, 2023

An Arbitrary File Movement vulnerability was found in ASUSTOR Data Master (ADM) allows an... Moderate Unreviewed

CVE-2023-4475 was published Aug 22, 2023

In multiple Codesys products in multiple versions, after successful authentication as a user,... Moderate Unreviewed

CVE-2023-37551 was published Aug 3, 2023

Sysaid - CWE-552: Files or Directories Accessible to External Parties - Authenticated users... Moderate Unreviewed

CVE-2023-32226 was published Jul 30, 2023

Auth. (admin+) Arbitrary File Read vulnerability in S2W – Import Shopify to WooCommerce plugin <=... Moderate Unreviewed

CVE-2022-44634 was published Jul 6, 2023

A CWE-552 "Files or Directories Accessible to External Parties” in the web interface of the Tyan... Moderate Unreviewed

CVE-2023-2538 was published Jul 5, 2023

A Directory Browsing vulnerability in MCL-Net version 4.3.5.8788 webserver running on default... Moderate Unreviewed

CVE-2023-34834 was published Jun 29, 2023

A vulnerability was found in Weaver OA 9.5 and classified as problematic. This issue affects some... Moderate Unreviewed

CVE-2023-2766 was published May 17, 2023

An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before... Moderate Unreviewed

CVE-2023-29820 was published May 12, 2023

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1... Moderate Unreviewed

CVE-2023-29107 was published May 9, 2023

lmxcms v1.41 was discovered to contain an arbitrary file read vulnerability via TemplateAction... Moderate Unreviewed

CVE-2022-48094 was published Feb 1, 2023

The All-In-One Security (AIOS) WordPress plugin before 5.1.3 leaked settings of the plugin... Moderate Unreviewed

CVE-2022-4346 was published Jan 23, 2023

A vulnerability exists in the FTP server of the Zyxel AX7501-B0 firmware prior to V5.17(ABPC.3)C0... Moderate Unreviewed

CVE-2022-45440 was published Jan 17, 2023

A Local File Inclusion vulnerability has been found in Axiell Iguana CMS. Due to insufficient... Moderate Unreviewed

CVE-2022-45052 was published Jan 4, 2023

Previous 1 2 3 4 5 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

117 advisories