Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,965
Erlang
39
GitHub Actions
38
Go
2,615
Maven
5,000+
npm
4,255
NuGet
760
pip
4,036
Pub
12
RubyGems
953
Rust
1,049
Swift
45
Unreviewed advisories
All unreviewed
5,000+

134 advisories

Loading
Arbitrary file write vulnerability in Jenkins Cobertura Plugin Moderate
CVE-2020-2139 was published for org.jenkins-ci.plugins:cobertura (Maven) May 24, 2022
NotMyFault
Credited to NotMyFault
Ignite Realtime Openfire directory traversal vulnerability Moderate
CVE-2019-18393 was published for org.igniterealtime.openfire:parent (Maven) May 24, 2022
Improper Limitation of a Pathname to a Restricted Directory in Jenkins Google OAuth Credentials Plugin Moderate
CVE-2019-10436 was published for org.jenkins-ci.plugins:google-oauth-plugin (Maven) May 24, 2022
Arbitrary file read vulnerability in Jenkins File System SCM Plugin Moderate
CVE-2019-10375 was published for hudson.plugins.filesystem_scm:filesystem_scm (Maven) May 24, 2022
Improper Limitation of a Pathname to a Restricted Directory in Jenkins Moderate
CVE-2019-10352 was published for org.jenkins-ci.main:jenkins-core (Maven) May 24, 2022
sunSUNQ
Credited to sunSUNQ
Apache Karaf vulnerable to relative path traversal Moderate
CVE-2019-0226 was published for org.apache.karaf.config:org.apache.karaf.config.core (Maven) May 24, 2022
Apache Struts directory traversal vulnerability Moderate
CVE-2008-6505 was published for org.apache.struts:struts2-core (Maven) May 17, 2022
Improper Limitation of a Pathname to a Restricted Directory in JBoss Undertow Moderate
CVE-2014-7816 was published for io.undertow:undertow-core (Maven) May 17, 2022
Improper Limitation of a Pathname to a Restricted Directory in Elasticsearch Moderate
CVE-2015-3337 was published for org.elasticsearch:elasticsearch (Maven) May 17, 2022
Improper Limitation of a Pathname to a Restricted Directory in Apache Solr Moderate
CVE-2013-6397 was published for org.apache.solr:solr-core (Maven) May 17, 2022
MarkLee131
Credited to MarkLee131
Path Traversal in Eclipse Mojarra Moderate
CVE-2013-3827 was published for org.glassfish:javax.faces (Maven) May 17, 2022
Jenkins directory traversal vulnerability Moderate
CVE-2014-2059 was published for org.jenkins-ci.main:jenkins-core (Maven) May 17, 2022
sunSUNQ
Credited to sunSUNQ
Jenkins Path Traversal vulnerability Moderate
CVE-2014-3664 was published for org.jenkins-ci.main:jenkins-core (Maven) May 17, 2022
Path Traversal in Apache Oozie Moderate
CVE-2017-15712 was published for org.apache.oozie:oozie-core (Maven) May 14, 2022
Jenkins HTML Publisher Plugin path traversal vulnerability Moderate
CVE-2018-1000175 was published for org.jenkins-ci.plugins:htmlpublisher (Maven) May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Elasticsearch Moderate
CVE-2015-5531 was published for org.elasticsearch:elasticsearch (Maven) May 14, 2022
Apache OpenMeetings Directory Traversal vulnerability Moderate
CVE-2016-0784 was published for org.apache.openmeetings:openmeetings-install (Maven) May 14, 2022
WSO2 Carbon directory traversal vulnerability Moderate
CVE-2016-4314 was published for org.wso2.carbon.commons:org.wso2.carbon.logging.view.ui (Maven) May 14, 2022
Apache Shiro Path Traversal vulnerability Moderate
CVE-2010-3863 was published for org.apache.shiro:shiro-root (Maven) May 14, 2022
RubyGems Path Traversal vulnerability Moderate
CVE-2018-1000079 was published for org.jruby:jruby-stdlib (RubyGems) May 14, 2022
Directory Traversal in Apache Tomcat Moderate
CVE-2008-5515 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
MarkLee131 sunSUNQ
Credited to MarkLee131 and sunSUNQ
Improper Limitation of a Pathname to a Restricted Directory in Apache ActiveMQ Moderate
CVE-2015-1830 was published for org.apache.activemq:activemq-client (Maven) May 14, 2022
sunSUNQ
Credited to sunSUNQ
OpenRefine Directory Traversal Moderate
CVE-2018-19859 was published for org.openrefine:main (Maven) May 14, 2022
UberFire Framework Improperly Restricts Paths Moderate
CVE-2014-8114 was published for org.uberfire:uberfire-parent (Maven) May 14, 2022
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat Moderate
CVE-2015-5174 was published for org.apache.tomcat:tomcat (Maven) May 14, 2022
anlakii
Credited to anlakii
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database