GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,001
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
481 advisories
Filter by severity
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1...
High
Unreviewed
CVE-2018-1802
was published
May 13, 2022
An untrusted search path vulnerability in IBM i Access for Windows versions 7.1 and earlier on...
High
Unreviewed
CVE-2018-1888
was published
May 13, 2022
Philips IntelliSpace Portal all versions of 8.0.x, and 7.0.x have an unquoted search path or...
High
Unreviewed
CVE-2018-5470
was published
May 13, 2022
DLL Side-Loading vulnerability in Microsoft Windows Client in McAfee True Key before 4.20.110...
High
Unreviewed
CVE-2018-6661
was published
May 13, 2022
DLL Search Order Hijacking vulnerability in Microsoft Windows Client in McAfee True Key (TK)...
High
Unreviewed
CVE-2018-6700
was published
May 13, 2022
All versions up to ZXCLOUD iRAI V5.01.05 of the ZTE uSmartView product are impacted by untrusted...
High
Unreviewed
CVE-2018-7365
was published
May 13, 2022
DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection ...
Moderate
Unreviewed
CVE-2019-3587
was published
May 13, 2022
A DLL search path vulnerability was reported in Lenovo Bootable Generator, prior to version Mar...
High
Unreviewed
CVE-2019-6154
was published
May 13, 2022
The agent in Bomgar Remote Support 15.2.x before 15.2.3, 16.1.x before 16.1.5, and 16.2.x before...
High
Unreviewed
CVE-2017-5996
was published
May 13, 2022
In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice launch daemon has an...
High
Unreviewed
CVE-2017-17809
was published
May 13, 2022
Untrusted search path vulnerability in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2,...
Moderate
Unreviewed
CVE-2014-0315
was published
May 13, 2022
Untrusted search path vulnerability in Explzh 5.67 and earlier allows local users to gain...
Moderate
Unreviewed
CVE-2010-3159
was published
May 13, 2022
Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges...
High
Unreviewed
CVE-2016-9274
was published
May 13, 2022
Foxit PDF Compressor installers from versions from 7.0.0.183 to 7.7.2.10 contain a DLL preloading...
High
Unreviewed
CVE-2017-12892
was published
May 13, 2022
Dashlane might allow local users to gain privileges by placing a Trojan horse WINHTTP.dll in the ...
High
Unreviewed
CVE-2017-11657
was published
May 13, 2022
The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS,...
High
Unreviewed
CVE-2019-6724
was published
May 13, 2022
InternetSoft FTP Commander 8.02 and prior has an untrusted search path, allowing DLL hijacking...
High
Unreviewed
CVE-2017-11749
was published
May 13, 2022
elf/dl-load.c in the GNU C Library (aka glibc or libc6) 2.19 through 2.26 mishandles RPATH and...
High
Unreviewed
CVE-2017-16997
was published
May 13, 2022
Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft...
High
Unreviewed
CVE-2010-3190
was published
May 13, 2022
Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path...
High
Unreviewed
CVE-2018-10959
was published
May 13, 2022
Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability,...
High
Unreviewed
CVE-2017-5233
was published
May 13, 2022
Untrusted search path vulnerability in Installers of ART EX Driver for ApeosPort-VI C7771/C6671...
High
Unreviewed
CVE-2017-10850
was published
May 13, 2022
Ansible Improper Input Validation vulnerability
High
CVE-2018-10874
was published
for
ansible
(pip)
May 13, 2022
** DISPUTED ** Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as...
High
Unreviewed
CVE-2011-3640
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API