GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
475 advisories
Filter by severity
Untrusted search path vulnerability in Skype for Windows allows an attacker to gain privileges...
High
Unreviewed
CVE-2018-0594
was published
May 14, 2022
Untrusted search path vulnerability in the installer of Microsoft OneDrive allows an attacker to...
High
Unreviewed
CVE-2018-0593
was published
May 14, 2022
Untrusted search path vulnerability in Microsoft OneDrive allows an attacker to gain privileges...
High
Unreviewed
CVE-2018-0592
was published
May 14, 2022
The Firefox installer on Windows can be made to load malicious DLL files stored in the same...
High
Unreviewed
CVE-2017-7755
was published
May 14, 2022
In Puppet Agent 1.10.x prior to 1.10.13, Puppet Agent 5.3.x prior to 5.3.7, Puppet Agent 5.5.x...
High
Unreviewed
CVE-2018-6514
was published
May 14, 2022
An issue was discovered in DisplayLink Core Software Cleaner Application 8.2.1956. When the...
High
Unreviewed
CVE-2018-7884
was published
May 14, 2022
AXON PBX 2.02 contains a DLL hijacking vulnerability that could allow an unauthenticated, remote...
High
Unreviewed
CVE-2018-11551
was published
May 14, 2022
There is an Insufficient Path Validation Vulnerability in Citrix XenMobile Server 10.8 before RP2...
High
Unreviewed
CVE-2018-10650
was published
May 14, 2022
Adobe InDesign versions 13.0 and below have an exploitable Untrusted Search Path vulnerability....
High
Unreviewed
CVE-2018-4927
was published
May 14, 2022
Untrusted search path vulnerability in CELSYS, Inc CLIP STUDIO series (CLIP STUDIO PAINT (for...
High
Unreviewed
CVE-2018-0580
was published
May 14, 2022
ESTsoft ALZip before 10.76 allows local users to execute arbitrary code via creating a malicious ...
High
Unreviewed
CVE-2018-10027
was published
May 14, 2022
The Installer in Whale allows DLL hijacking.
High
Unreviewed
CVE-2017-15913
was published
May 14, 2022
An exploitable dll hijacking vulnerability exists in the poaService.exe service component of the...
High
Unreviewed
CVE-2017-2802
was published
May 14, 2022
Multiple untrusted search path vulnerabilities in the DMTGUI2.EXE and DvInesLogFileViewer.Exe...
High
Unreviewed
CVE-2011-5158
was published
May 14, 2022
Unauthorized code execution from specific DLL and is known as DLL Hijacking attack in Kaspersky...
High
Unreviewed
CVE-2018-6306
was published
May 14, 2022
Untrusted search path vulnerability in The installer of PhishWall Client Internet Explorer...
High
Unreviewed
CVE-2018-0561
was published
May 14, 2022
Untrusted search path vulnerability in Installer of SoundEngine Free ver.5.21 and earlier allows...
High
Unreviewed
CVE-2018-0562
was published
May 14, 2022
Untrusted search path vulnerability in ViX version 2.21.148.0 allows an attacker to gain...
High
Unreviewed
CVE-2018-0540
was published
May 14, 2022
Untrusted search path vulnerability in The installer of PhishWall Client Firefox and Chrome...
High
Unreviewed
CVE-2018-0552
was published
May 14, 2022
Untrusted search path vulnerability in WinShot 1.53a and earlier (Installer) allows an attacker...
High
Unreviewed
CVE-2018-0544
was published
May 14, 2022
Untrusted search path vulnerability in Jtrim 1.53c and earlier (Installer) allows an attacker to...
High
Unreviewed
CVE-2018-0543
was published
May 14, 2022
A DLL hijacking vulnerability exists in Schneider Electric's SoMove Software and associated DTM...
High
Unreviewed
CVE-2018-7239
was published
May 14, 2022
An issue was discovered in PureVPN through 5.19.4.0 on Windows. The client installation grants...
High
Unreviewed
CVE-2018-7484
was published
May 14, 2022
Untrusted search path vulnerability in "FLET'S Azukeru Backup Tool" version 1.5.2.6 and earlier...
High
Unreviewed
CVE-2018-0515
was published
May 14, 2022
Untrusted search path vulnerability in FLET'S v4 / v6 address selection tool allows an attacker...
High
Unreviewed
CVE-2018-0516
was published
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API