GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
459 advisories
Filter by severity
Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier (for RC-S310...
High
Unreviewed
CVE-2017-2286
was published
May 17, 2022
Untrusted search path vulnerability in LhaForge Ver.1.6.5 and earlier allows an attacker to gain...
High
Unreviewed
CVE-2017-2288
was published
May 17, 2022
An Uncontrolled Search Path Element issue was discovered in SIMPlight SCADA Software version 4.3...
High
Unreviewed
CVE-2017-9661
was published
May 17, 2022
An Uncontrolled Search Path Element issue was discovered in Solar Controls WATTConfig M Software...
High
Unreviewed
CVE-2017-9648
was published
May 17, 2022
An Uncontrolled Search Path Element issue was discovered in Solar Controls Heating Control...
High
Unreviewed
CVE-2017-9646
was published
May 17, 2022
Local privilege escalation due to a DLL hijacking vulnerability. The following products are...
High
Unreviewed
CVE-2022-30696
was published
May 17, 2022
In AutomationDirect CLICK Programming Software (Part Number C0-PGMSW) Versions 2.10 and prior; C...
High
Unreviewed
CVE-2017-14020
was published
May 14, 2022
DLL Hijacking vulnerability in CorelDRAW X7, Corel Photo-Paint X7, Corel PaintShop Pro X7, Corel...
High
Unreviewed
CVE-2014-8393
was published
May 14, 2022
Norton Power Eraser (prior to 5.3.0.24) and SymDiag (prior to 2.1.242) may be susceptible to a...
High
Unreviewed
CVE-2018-5238
was published
May 14, 2022
Adobe Technical Communications Suite versions 1.0.5.1 and below have an insecure library loading ...
High
Unreviewed
CVE-2018-15976
was published
May 14, 2022
A DLL hijacking vulnerability exists in Schneider Electric Software Update (SESU), all versions...
High
Unreviewed
CVE-2018-7799
was published
May 14, 2022
ExifTool 8.32 allows local users to gain privileges by creating a %TEMP%\par-%username%\cache...
High
Unreviewed
CVE-2018-20211
was published
May 14, 2022
The Rust Programming Language rustdoc version Between 0.8 and 1.27.0 contains a CWE-427:...
High
Unreviewed
CVE-2018-1000622
was published
May 13, 2022
Swisscom MySwisscomAssistant 2.17.1.1065 contains a vulnerability that could allow an...
High
Unreviewed
CVE-2018-6765
was published
May 13, 2022
Swisscom TVMediaHelper 1.1.0.50 contains a vulnerability that could allow an unauthenticated,...
High
Unreviewed
CVE-2018-6766
was published
May 13, 2022
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC...
High
Unreviewed
CVE-2017-7966
was published
May 13, 2022
The "pingsender" executable used by the Firefox Health Report dynamically loads a system copy of...
High
Unreviewed
CVE-2017-7836
was published
May 13, 2022
In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD...
High
Unreviewed
CVE-2017-7884
was published
May 13, 2022
Code injection vulnerability in Avira Total Security Suite 15.0 (and earlier), Optimization Suite...
High
Unreviewed
CVE-2017-6417
was published
May 13, 2022
Symantec VIP Access for Desktop prior to 2.2.4 can be susceptible to a DLL Pre-Loading...
High
Unreviewed
CVE-2017-6329
was published
May 13, 2022
Code injection vulnerability in Trend Micro Maximum Security 11.0 (and earlier), Internet...
High
Unreviewed
CVE-2017-5565
was published
May 13, 2022
Code injection vulnerability in Avast Premier 12.3 (and earlier), Internet Security 12.3 (and...
High
Unreviewed
CVE-2017-5567
was published
May 13, 2022
Code injection vulnerability in AVG Ultimate 17.1 (and earlier), AVG Internet Security 17.1 (and...
High
Unreviewed
CVE-2017-5566
was published
May 13, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and...
High
Unreviewed
CVE-2017-3013
was published
May 13, 2022
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and...
High
Unreviewed
CVE-2017-3012
was published
May 13, 2022
ProTip!
Advisories are also available from the
GraphQL API