Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

411 advisories

Loading
Adobe Premiere Pro CC versions 13.1.2 and earlier have an insecure library loading (dll hijacking... High Unreviewed
CVE-2019-7931 was published May 24, 2022
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited,... High Unreviewed
CVE-2019-14684 was published May 24, 2022
Adobe Character Animator versions 2.1 and earlier have an insecure library loading (dll hijacking... High Unreviewed
CVE-2019-7870 was published May 24, 2022
Adobe Prelude CC versions 8.1 and earlier have an insecure library loading (dll hijacking)... High Unreviewed
CVE-2019-7961 was published May 24, 2022
Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking)... High Unreviewed
CVE-2019-8062 was published May 24, 2022
DLL preloading vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An... High Unreviewed
CVE-2019-7362 was published May 24, 2022
A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier... High Unreviewed
CVE-2019-6826 was published May 24, 2022
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited,... High Unreviewed
CVE-2019-14687 was published May 24, 2022
NSA Ghidra before 9.0.2 is vulnerable to DLL hijacking because it loads jansi.dll from the... High Unreviewed
CVE-2019-17665 was published May 24, 2022
An issue was discovered in Avast antivirus before 19.8 and AVG antivirus before 19.8. A DLL... High Unreviewed
CVE-2019-17093 was published May 24, 2022
Untrusted search path vulnerability in the installer of Content Transfer (for Windows) Ver.1.3... High Unreviewed
CVE-2022-41796 was published Oct 24, 2022
In Python 3.8.4, sys.path restrictions specified in a python38._pth file are ignored, allowing... High Unreviewed
CVE-2020-15801 was published May 24, 2022
Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an... High Unreviewed
CVE-2020-0570 was published May 24, 2022
InstallBuilder for Qt Windows (versions prior to 20.7.0) installers look for plugins at a... High Unreviewed
CVE-2020-3979 was published May 24, 2022
monero-wallet-gui in Monero GUI 0.17.0.1 includes the . directory in an embedded RPATH (with a... High Unreviewed
CVE-2020-26947 was published May 24, 2022
Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could... High Unreviewed
CVE-2020-27695 was published May 24, 2022
The Windows installer for PostgreSQL 9.5 - 12 invokes system-provided executables that do not... High Unreviewed
CVE-2020-10733 was published May 24, 2022
SonicWall Global VPN client version 4.10.4.0314 and earlier allows unprivileged windows user to... High Unreviewed
CVE-2020-5144 was published May 24, 2022
Trend Micro Security 2020 (Consumer) contains a vulnerability in the installer package that could... High Unreviewed
CVE-2020-27697 was published May 24, 2022
IBM DB2 Accessories Suite for Linux, UNIX, and Windows, DB2 for Linux, UNIX and Windows (includes... High Unreviewed
CVE-2020-4739 was published May 24, 2022
Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an... High Unreviewed
CVE-2020-5674 was published May 24, 2022
Acronis True Image for Windows prior to 2021 Update 3 allowed local privilege escalation due to a... High Unreviewed
CVE-2020-35145 was published May 24, 2022
In Edge Client version 7.2.x before 7.2.1.1, 7.1.9.x before 7.1.9.8, and 7.1.x-7.1.8.x before 7.1... High Unreviewed
CVE-2021-22980 was published May 24, 2022
The Dolby Audio X2 (DAX2) API service before 0.8.8.90 on Windows allows local users to gain... High Unreviewed
CVE-2021-3146 was published May 24, 2022
A local privilege escalation vulnerability was discovered in Erlang/OTP prior to version 23.2.3.... High Unreviewed
CVE-2021-29221 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database