GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,643
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
627 advisories
Filter by severity
JetBrains ReSharper installers for versions before 2019.2 had a DLL Hijacking vulnerability.
High
Unreviewed
CVE-2019-16407
was published
May 24, 2022
An Uncontrolled Search Path Vulnerability is applicable to the following: Dell Update Package ...
Moderate
Unreviewed
CVE-2019-3726
was published
May 24, 2022
Adobe application manager installer version 10.0 have an Insecure Library Loading (DLL hijacking)...
High
Unreviewed
CVE-2019-8076
was published
May 24, 2022
DLL preloading vulnerability in versions 2017, 2018, 2019, and 2020 of Autodesk Advanced Steel,...
High
Unreviewed
CVE-2019-7364
was published
May 24, 2022
An issue was discovered in Bitdefender products for Windows (Bitdefender Endpoint Security Tool...
High
Unreviewed
CVE-2019-14242
was published
May 24, 2022
A vulnerability in the loading mechanism of specific dynamic link libraries in Cisco Jabber for...
High
Unreviewed
CVE-2019-1855
was published
May 24, 2022
A non-privileged user or program can put code and a config file in a known non-privileged path ...
High
Unreviewed
CVE-2019-5443
was published
May 24, 2022
PC-Doctor Toolbox before 7.3 has an Uncontrolled Search Path Element.
High
Unreviewed
CVE-2019-12280
was published
May 24, 2022
HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability...
Moderate
Unreviewed
CVE-2019-5245
was published
May 24, 2022
Privilege escalation due to insecure directory permissions affecting ViveportDesktopService in...
High
Unreviewed
CVE-2019-12177
was published
May 24, 2022
A Uncontrolled Search Path Element (CWE-427) vulnerability exists in VideoXpert OpsCenter...
High
Unreviewed
CVE-2018-7840
was published
May 24, 2022
electron-builder's NSIS installer - execute arbitrary code on the target machine (Windows only)
High
CVE-2024-27303
was published
for
app-builder-lib
(npm)
Mar 4, 2024
A vulnerability was found in Redis. It has been declared as critical. This vulnerability affects...
Critical
Unreviewed
CVE-2022-3734
was published
Oct 28, 2022
Privilege escalation in windows agent plugin in Checkmk before 2.2.0p23, 2.1.0p40 and 2.0.0 (EOL)...
High
Unreviewed
CVE-2024-0670
was published
Mar 11, 2024
A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could...
High
Unreviewed
CVE-2024-20338
was published
Mar 6, 2024
Dell Update Package (DUP), Versions prior to 4.9.10 contain an Uncontrolled Search Path...
Moderate
Unreviewed
CVE-2023-39254
was published
Mar 1, 2024
Delta Electronics CNCSoft-B DOPSoft prior to v4.0.0.82
insecurely loads libraries, which may...
High
Unreviewed
CVE-2024-1595
was published
Feb 29, 2024
The vulnerability, if exploited, could allow a malicious entity with access to the file system...
High
Unreviewed
CVE-2023-6132
was published
Feb 29, 2024
A vulnerability classified as critical has been found in Caphyon Advanced Installer 19.7. This...
High
Unreviewed
CVE-2022-4956
was published
Sep 30, 2023
An installer that loads or executes files using an unconstrained search path may be vulnerable to...
High
Unreviewed
CVE-2022-43703
was published
Jul 28, 2023
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for...
Critical
Unreviewed
CVE-2024-23054
was published
Feb 5, 2024
Trend Micro uiAirSupport, included in the Trend Micro Security 2023 family of consumer products,...
High
Unreviewed
CVE-2024-23940
was published
Jan 29, 2024
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking...
High
Unreviewed
CVE-2023-51711
was published
Jan 24, 2024
Privilege escalation in jar_signature agent plugin in Checkmk before 2.2.0p17, 2.1.0p37 and 2.0...
High
Unreviewed
CVE-2023-6740
was published
Jan 12, 2024
The LSP (Language Server Protocol) plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91...
High
Unreviewed
CVE-2022-23853
was published
Feb 12, 2022
ProTip!
Advisories are also available from the
GraphQL API