Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,339
Erlang
31
GitHub Actions
22
Go
2,099
Maven
5,000+
npm
3,763
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
883
Swift
37
Unreviewed advisories
All unreviewed
5,000+

417 advisories

Loading
DLL Search Order Hijacking vulnerability in Microsoft Windows Client in McAfee True Key (TK)... High Unreviewed
CVE-2018-6700 was published May 13, 2022
All versions up to ZXCLOUD iRAI V5.01.05 of the ZTE uSmartView product are impacted by untrusted... High Unreviewed
CVE-2018-7365 was published May 13, 2022
A DLL search path vulnerability was reported in Lenovo Bootable Generator, prior to version Mar... High Unreviewed
CVE-2019-6154 was published May 13, 2022
The agent in Bomgar Remote Support 15.2.x before 15.2.3, 16.1.x before 16.1.5, and 16.2.x before... High Unreviewed
CVE-2017-5996 was published May 13, 2022
In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice launch daemon has an... High Unreviewed
CVE-2017-17809 was published May 13, 2022
Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges... High Unreviewed
CVE-2016-9274 was published May 13, 2022
Foxit PDF Compressor installers from versions from 7.0.0.183 to 7.7.2.10 contain a DLL preloading... High Unreviewed
CVE-2017-12892 was published May 13, 2022
Dashlane might allow local users to gain privileges by placing a Trojan horse WINHTTP.dll in the ... High Unreviewed
CVE-2017-11657 was published May 13, 2022
The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS,... High Unreviewed
CVE-2019-6724 was published May 13, 2022
InternetSoft FTP Commander 8.02 and prior has an untrusted search path, allowing DLL hijacking... High Unreviewed
CVE-2017-11749 was published May 13, 2022
elf/dl-load.c in the GNU C Library (aka glibc or libc6) 2.19 through 2.26 mishandles RPATH and... High Unreviewed
CVE-2017-16997 was published May 13, 2022
Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft... High Unreviewed
CVE-2010-3190 was published May 13, 2022
Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path... High Unreviewed
CVE-2018-10959 was published May 13, 2022
Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability,... High Unreviewed
CVE-2017-5233 was published May 13, 2022
Untrusted search path vulnerability in Installers of ART EX Driver for ApeosPort-VI C7771/C6671... High Unreviewed
CVE-2017-10850 was published May 13, 2022
Ansible Arbitrary Code Execution High
CVE-2018-10875 was published for ansible (pip) May 13, 2022
Ansible Improper Input Validation vulnerability High
CVE-2018-10874 was published for ansible (pip) May 13, 2022
** DISPUTED ** Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as... High Unreviewed
CVE-2011-3640 was published May 13, 2022
Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and... High Unreviewed
CVE-2012-2040 was published May 13, 2022
A DLL hijacking vulnerability in Trend Micro Security 2019 (Consumer) versions below 15.0.0.1163... High Unreviewed
CVE-2018-18333 was published May 13, 2022
Untrusted search path vulnerability in the installer of PhishWall Client Internet Explorer... High Unreviewed
CVE-2017-2130 was published May 13, 2022
A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an... High Unreviewed
CVE-2018-6218 was published May 13, 2022
Untrusted search path vulnerability in Setup file of advance preparation for e-Tax software (WEB... High Unreviewed
CVE-2017-2226 was published May 13, 2022
Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0... High Unreviewed
CVE-2016-5330 was published May 13, 2022
Puppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7,... High Unreviewed
CVE-2018-6513 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database