Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

483 advisories

Loading
Untrusted Search Path in GitHub repository vim/vim prior to 9.0.1833. High Unreviewed
CVE-2023-4736 was published Sep 2, 2023
GitPython untrusted search path on Windows systems leading to arbitrary code execution High
CVE-2023-40590 was published for gitpython (pip) Aug 29, 2023
stsewd MicaelJarniac
An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\0' bytes is passed... High Unreviewed
CVE-2023-41105 was published Aug 23, 2023
Uncontrolled search path in some Intel(R) RST software before versions 16.8.5.1014.5, 17.11.3... High Unreviewed
CVE-2022-43456 was published Aug 11, 2023
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are... Moderate Unreviewed
CVE-2023-29299 was published Aug 10, 2023
Untrusted search path in Zoom Rooms for Windows before version 5.15.5 may allow an authenticated... Moderate Unreviewed
CVE-2023-39212 was published Aug 9, 2023
Untrusted search path in the installer for Zoom Desktop Client for Windows before 5.14.5 may... High Unreviewed
CVE-2023-36540 was published Aug 8, 2023
Improper access control in Zoom Rooms before version 5.15.0 may allow an authenticated user to... High Unreviewed
CVE-2023-36538 was published Jul 11, 2023
Untrusted search path in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-36536 was published Jul 11, 2023
Insecure temporary file in the installer for Zoom Rooms before version 5.15.0 may allow an... High Unreviewed
CVE-2023-34119 was published Jul 11, 2023
An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-34145 was published Jun 27, 2023
An untrusted search path vulnerability in the Trend Micro Apex One and Apex One as a Service... High Unreviewed
CVE-2023-34144 was published Jun 27, 2023
sccache vulnerable to privilege escalation if server is run as root High
CVE-2023-1521 was published for sccache (Rust) May 30, 2023
kevinbackhouse
Qualys Cloud Agent for macOS (versions 2.5.1-75 before 3.7) installer allows a local escalation... High Unreviewed
CVE-2023-28143 was published Apr 18, 2023
An issue found in Wondershare Technology Co, Ltd Edrawmind v.10.0.6 allows a remote attacker to... High Unreviewed
CVE-2023-27759 was published Apr 4, 2023
An issue found in Wondershare Technology Co, Ltd Filmora v.12.0.9 allows a remote attacker to... High Unreviewed
CVE-2023-27760 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Dr.Fone v.12.4.9 allows a remote attacker to... High Unreviewed
CVE-2023-27767 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd PDFelement v9.1.1 allows a remote attacker to... High Unreviewed
CVE-2023-27768 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Anireel 1.5.4 allows a remote attacker to... High Unreviewed
CVE-2023-27766 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd PDF Reader v.1.0.1 allows a remote attacker to... High Unreviewed
CVE-2023-27769 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Recoverit v.10.6.3 allows a remote attacker to... High Unreviewed
CVE-2023-27765 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd Repairit v.3.5.4 allows a remote attacker to... High Unreviewed
CVE-2023-27764 was published Apr 4, 2023
An issue found in Wondershare Technology Co.,Ltd MobileTrans v.4.0.2 allows a remote attacker to... High Unreviewed
CVE-2023-27763 was published Apr 4, 2023
An issue found in Wondershare Technology Co., Ltd UniConverter v.14.0.0 allows a remote attacker... High Unreviewed
CVE-2023-27761 was published Apr 4, 2023
An issue found in Wondershare Technology Co., Ltd DemoCreator v.6.0.0 allows a remote attacker to... High Unreviewed
CVE-2023-27762 was published Apr 4, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database