GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,014
Maven
5,000+
npm
3,721
NuGet
662
pip
3,393
Pub
11
RubyGems
890
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
462 advisories
Filter by severity
Anaconda Anaconda3 through 2021.11.0.0 and Miniconda3 through 11.0.0.0 can create a world...
High
Unreviewed
CVE-2022-26526
was published
Mar 18, 2022
Untrusted search path vulnerability in AttacheCase ver.4.0.2.7 and earlier allows an attacker to...
High
Unreviewed
CVE-2022-25348
was published
Apr 1, 2022
Untrusted search path vulnerability in AttacheCase ver.3.6.1.0 and earlier allows an attacker to...
High
Unreviewed
CVE-2022-28128
was published
Apr 1, 2022
A untrusted search path issue was found in Calibre at devices/linux_mount_helper.c leading to the...
Critical
Unreviewed
CVE-2011-4125
was published
Apr 22, 2022
Untrusted search path vulnerability in the PySys_SetArgv API function in Python 2.6 and earlier,...
Moderate
Unreviewed
CVE-2008-5983
was published
May 17, 2022
Untrusted search path vulnerability in the pthread_win32_process_attach_np function in pthreadGC2...
Moderate
Unreviewed
CVE-2010-5250
was published
May 17, 2022
The writeRandomBytes_RtlGenRandom function in xmlparse.c in libexpat in Expat 2.2.1 and 2.2.2 on...
High
Unreviewed
CVE-2017-11742
was published
May 17, 2022
When Octopus Server is installed using a custom folder location, folder ACLs are not set...
High
Unreviewed
CVE-2021-26556
was published
May 24, 2022
Sandboxie installer 5071703 has a DLL Hijacking or Unsafe DLL Loading Vulnerability via a Trojan...
High
Unreviewed
CVE-2017-12480
was published
May 17, 2022
VIT Spider Player 2.5.3 has an untrusted search path, allowing DLL hijacking via a Trojan horse...
High
Unreviewed
CVE-2017-11748
was published
May 17, 2022
Format Factory 4.1.0 has a DLL Hijacking Vulnerability because an untrusted search path is used...
Critical
Unreviewed
CVE-2017-12414
was published
May 17, 2022
Untrusted search path vulnerability in Installer of Lhaz version 2.4.0 and earlier allows an...
High
Unreviewed
CVE-2017-2246
was published
May 17, 2022
Untrusted search path vulnerability in Encrypted files in self-decryption format created by...
High
Unreviewed
CVE-2017-2270
was published
May 17, 2022
Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver...
High
Unreviewed
CVE-2017-2272
was published
May 17, 2022
Untrusted search path vulnerability in Tween Ver1.6.6.0 and earlier allows an attacker to gain...
High
Unreviewed
CVE-2017-2279
was published
May 17, 2022
IBM WebSphere Message Broker could allow a local user with specialized access to prevent the...
Low
Unreviewed
CVE-2017-1144
was published
May 17, 2022
Adobe Shockwave versions 12.2.7.197 and earlier have an insecure library loading (DLL hijacking)...
High
Unreviewed
CVE-2017-2983
was published
May 17, 2022
Untrusted search path vulnerability in The installer of Charamin OMP Version 1.1.7.4 and earlier,...
High
Unreviewed
CVE-2017-2227
was published
May 17, 2022
Untrusted search path vulnerability in Self-extracting archive files created by Lhaz version 2.4...
High
Unreviewed
CVE-2017-2247
was published
May 17, 2022
Untrusted search path vulnerability in Encrypted files in self-decryption format created by...
High
Unreviewed
CVE-2017-2268
was published
May 17, 2022
Untrusted search path vulnerability in Installer of PDF Digital Signature Plugin (G2.30) and...
High
Unreviewed
CVE-2017-2233
was published
May 17, 2022
Untrusted search path vulnerability in Installer of Denshinouhin Check System (for Ministry of...
High
Unreviewed
CVE-2017-2188
was published
May 17, 2022
Untrusted search path vulnerability in Installer of Electronic tendering and bid opening system...
High
Unreviewed
CVE-2017-2208
was published
May 17, 2022
Untrusted search path vulnerability in EbidSettingChecker.exe (version 1.0.0.0) allows an...
Critical
Unreviewed
CVE-2017-2225
was published
May 17, 2022
Untrusted search path vulnerability in Douro Kouji Kanseizutou Check Program Ver3.1 ...
High
Unreviewed
CVE-2017-2230
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API