GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 26,046
Composer 5,218
Erlang 40
GitHub Actions 40
Go 2,974
Maven 6,256
npm 4,621
NuGet 788
pip 4,317
Pub 12
RubyGems 984
Rust 1,131
Swift 49

Unreviewed advisories

All unreviewed 289,607

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

309 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security... Moderate Unreviewed

CVE-2024-7107 was published Sep 26, 2024

Files or Directories Accessible to External Parties vulnerability in Eliz Software Panel allows... Critical Unreviewed

CVE-2024-6878 was published Sep 18, 2024

A vulnerability was found in Mercury MNVR816 up to 2.0.1.0.5. It has been classified as... Moderate Unreviewed

CVE-2024-8655 was published Sep 10, 2024

Dell PowerScale InsightIQ, versions 5.0 through 5.1, contains a File or Directories Accessible to... High Unreviewed

CVE-2024-39581 was published Sep 10, 2024

cgi-bin/fdmcgiwebv2.cgi on Swissphone DiCal-RED 4009 devices allows an authenticated attacker to... High Unreviewed

CVE-2024-36442 was published Aug 22, 2024

Priority – CWE-552: Files or Directories Accessible to External Parties Moderate Unreviewed

CVE-2024-41699 was published Aug 20, 2024

The CAYIN Technology CMS lacks proper access control, allowing unauthenticated remote attackers... High Unreviewed

CVE-2024-7729 was published Aug 14, 2024

An unauthenticated remote attacker can use this vulnerability to change the device configuration... High Unreviewed

CVE-2024-3913 was published Aug 13, 2024

A vulnerability has been identified in Omnivise T3000 Application Server (All versions >= R9.2),... High Unreviewed

CVE-2024-38876 was published Aug 2, 2024

Matrix Tafnit v8 - CWE-552: Files or Directories Accessible to External Parties High Unreviewed

CVE-2024-38429 was published Jul 30, 2024

Files on the Windows system are accessible without authentication to external parties due to a... High Unreviewed

CVE-2024-6911 was published Jul 22, 2024

An unauthenticated remote attacker can read out sensitive device information through a... High Unreviewed

CVE-2024-6421 was published Jul 10, 2024

Unauthorized file access in WEB Server in ABB ASPECT - Enterprise v <=3.08.01; NEXUS Series v <... Critical Unreviewed

CVE-2024-6209 was published Jul 5, 2024

Web services managed by Edito CMS (Content Management System) in versions from 3.5 through 3.25... High Unreviewed

CVE-2024-4836 was published Jul 2, 2024

The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to,... Critical Unreviewed

CVE-2024-4098 was published Jun 20, 2024

CWE-552: Files or Directories Accessible to External Parties vulnerability exists which may... Moderate Unreviewed

CVE-2024-5056 was published Jun 12, 2024

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, watchOS... Moderate Unreviewed

CVE-2024-23282 was published Jun 10, 2024

A vulnerability was found in Casdoor up to 1.335.0. It has been classified as problematic.... Moderate Unreviewed

CVE-2024-5587 was published Jun 2, 2024

The Content Blocks (Custom Post Widget) plugin for WordPress is vulnerable to Local File... High Unreviewed

CVE-2024-3564 was published Jun 1, 2024

A vulnerability was found in SourceCodester Online Birth Certificate Management System 1.0. It... Moderate Unreviewed

CVE-2024-5045 was published May 17, 2024

An arbitrary file deletion vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed

CVE-2024-3037 was published May 14, 2024

Softing Secure Integration Server FileDirectory OPC UA Object Arbitrary File Creation... Moderate Unreviewed

CVE-2023-39480 was published May 3, 2024

Softing Secure Integration Server OPC UA Gateway Directory Creation Vulnerability. This... Moderate Unreviewed

CVE-2023-39479 was published May 3, 2024

Improper access control vulnerability in Apaczka plugin for PrestaShop allows information... High Unreviewed

CVE-2024-2759 was published Apr 4, 2024

WRC-X3200GST3-B v1.25 and earlier, and WRC-G01-W v1.24 and earlier allow a network-adjacent... Moderate Unreviewed

CVE-2024-29225 was published Apr 4, 2024

Previous 1…4…13 Next

Previous 1 2 3 4 5 6 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

309 advisories