Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,285
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,741
NuGet
668
pip
3,422
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

411 advisories

Loading
A DLL search path vulnerability was reported in PaperDisplay Hotkey Service version 1.2.0.8 that... High Unreviewed
CVE-2019-6165 was published May 24, 2022
Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x... High Unreviewed
CVE-2016-1014 was published May 14, 2022
Git LFS can execute a Git binary from the current directory on Windows High
CVE-2021-21237 was published for github.com/git-lfs/git-lfs (Go) Feb 15, 2022
Ry0taK
Privileges manipulation in Micro Focus Data Protector, versions 10.00, 10.01, 10.02, 10.03, 10.04... High Unreviewed
CVE-2019-11660 was published May 24, 2022
Untrusted search path vulnerability in ELECOM Camera Assistant 1.00 and QuickFileDealer Ver.1.2.1... High Unreviewed
CVE-2023-22368 was published Feb 15, 2023
Creative Cloud version 5.9.1 (and earlier) is affected by an Untrusted Search Path vulnerability... High Unreviewed
CVE-2023-26358 was published Mar 22, 2023
The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe'... High Unreviewed
CVE-2019-5631 was published May 24, 2022
An issue found in Wondershare Technology Co.,Ltd Anireel 1.5.4 allows a remote attacker to... High Unreviewed
CVE-2023-27766 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd PDFelement v9.1.1 allows a remote attacker to... High Unreviewed
CVE-2023-27768 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to... High Unreviewed
CVE-2023-27767 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Repairit v.3.5.4 allows a remote attacker to... High Unreviewed
CVE-2023-27764 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd MobileTrans v.4.0.2 allows a remote attacker to... High Unreviewed
CVE-2023-27763 was published Apr 4, 2023
An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to... High Unreviewed
CVE-2023-27760 was published Apr 4, 2023
An issue found in Wondershare Technology Co, Ltd Edrawmind v.10.0.6 allows a remote attacker to... High Unreviewed
CVE-2023-27759 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Creative Centerr v.1.0.8 allows a remote... High Unreviewed
CVE-2023-27771 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd PDF Reader v.1.0.1 allows a remote attacker to... High Unreviewed
CVE-2023-27769 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Edraw-max v.12.0.4 allows a remote attacker to... High Unreviewed
CVE-2023-27770 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Recoverit v.10.6.3 allows a remote attacker to... High Unreviewed
CVE-2023-27765 was published Apr 4, 2023
An issue found in Wondershare Technology Co., Ltd DemoCreator v.6.0.0 allows a remote attacker to... High Unreviewed
CVE-2023-27762 was published Apr 4, 2023
An issue found in Wondershare Technology Co., Ltd UniConverter v.14.0.0 allows a remote attacker... High Unreviewed
CVE-2023-27761 was published Apr 4, 2023
sinatra does not validate expanded path matches High
CVE-2022-29970 was published for sinatra (RubyGems) May 3, 2022
Untrusted search path vulnerability in Self-extracting archive files created by IExpress bundled... High Unreviewed
CVE-2018-0598 was published May 14, 2022
Disputed: OS Command injection in github.com/kardianos/service High
CVE-2022-29583 was published for github.com/kardianos/service (Go) Apr 23, 2022 withdrawn
masinger
A flaw was found in libXpm. When processing files with .Z or .gz extensions, the library calls... High Unreviewed
CVE-2022-4883 was published Feb 7, 2023
Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows... High Unreviewed
CVE-2016-10009 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database