Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

478 advisories

Loading
Norton Power Eraser (prior to 5.3.0.24) and SymDiag (prior to 2.1.242) may be susceptible to a... High Unreviewed
CVE-2018-5238 was published May 14, 2022
DLL Hijacking vulnerability in CorelDRAW X7, Corel Photo-Paint X7, Corel PaintShop Pro X7, Corel... High Unreviewed
CVE-2014-8393 was published May 14, 2022
In AutomationDirect CLICK Programming Software (Part Number C0-PGMSW) Versions 2.10 and prior; C... High Unreviewed
CVE-2017-14020 was published May 14, 2022
Local privilege escalation due to a DLL hijacking vulnerability. The following products are... High Unreviewed
CVE-2022-30696 was published May 17, 2022
An Uncontrolled Search Path Element issue was discovered in Solar Controls WATTConfig M Software... High Unreviewed
CVE-2017-9648 was published May 17, 2022
An Uncontrolled Search Path Element issue was discovered in Solar Controls Heating Control... High Unreviewed
CVE-2017-9646 was published May 17, 2022
An Uncontrolled Search Path Element issue was discovered in SIMPlight SCADA Software version 4.3... High Unreviewed
CVE-2017-9661 was published May 17, 2022
Untrusted search path vulnerability in LhaForge Ver.1.6.5 and earlier allows an attacker to gain... High Unreviewed
CVE-2017-2288 was published May 17, 2022
Untrusted search path vulnerability in NFC Port Software remover Ver.1.3.0.1 and earlier allows... High Unreviewed
CVE-2017-2287 was published May 17, 2022
Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier (for RC-S310... High Unreviewed
CVE-2017-2286 was published May 17, 2022
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80... High Unreviewed
CVE-2017-4987 was published May 17, 2022
Untrusted search path vulnerability in PatchJGD (PatchJGD101.EXE) ver. 1.0.1 allows an attacker... High Unreviewed
CVE-2017-2210 was published May 17, 2022
An issue was discovered in Sielco Sistemi Winlog Lite SCADA Software, versions prior to Version 3... High Unreviewed
CVE-2017-5161 was published May 17, 2022
ABB DataManagerPro 1.x before 1.7.1 allows local users to gain privileges by replacing a DLL file... High Unreviewed
CVE-2016-4526 was published May 17, 2022
Quick Heal Total Security before 12.1.1.27 allows DLL hijacking during installation. High Unreviewed
CVE-2022-31467 was published May 24, 2022
GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files... High Unreviewed
CVE-2019-6546 was published May 24, 2022
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place... High Unreviewed
CVE-2019-6564 was published May 24, 2022
NVIDIA Windows GPU Display driver software for Windows (all versions) contains a vulnerability in... High Unreviewed
CVE-2019-5676 was published May 24, 2022
A Uncontrolled Search Path Element (CWE-427) vulnerability exists in VideoXpert OpsCenter... High Unreviewed
CVE-2018-7840 was published May 24, 2022
Privilege escalation due to insecure directory permissions affecting ViveportDesktopService in... High Unreviewed
CVE-2019-12177 was published May 24, 2022
PC-Doctor Toolbox before 7.3 has an Uncontrolled Search Path Element. High Unreviewed
CVE-2019-12280 was published May 24, 2022
A non-privileged user or program can put code and a config file in a known non-privileged path ... High Unreviewed
CVE-2019-5443 was published May 24, 2022
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for... High Unreviewed
CVE-2019-1855 was published May 24, 2022
A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior... High Unreviewed
CVE-2019-6825 was published May 24, 2022
An issue was discovered in Bitdefender products for Windows (Bitdefender Endpoint Security Tool... High Unreviewed
CVE-2019-14242 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API