GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,206
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,109
Maven 5,284
npm 3,765
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 887
Swift 37

Unreviewed advisories

All unreviewed 243,420

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

485 advisories

Filter by severity

Sort by

Least recently updated

Untrusted search path vulnerability in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2,... Moderate Unreviewed

CVE-2014-0315 was published May 13, 2022

Untrusted search path vulnerability in Explzh 5.67 and earlier allows local users to gain... Moderate Unreviewed

CVE-2010-3159 was published May 13, 2022

Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges... High Unreviewed

CVE-2016-9274 was published May 13, 2022

Foxit PDF Compressor installers from versions from 7.0.0.183 to 7.7.2.10 contain a DLL preloading... High Unreviewed

CVE-2017-12892 was published May 13, 2022

Dashlane might allow local users to gain privileges by placing a Trojan horse WINHTTP.dll in the ... High Unreviewed

CVE-2017-11657 was published May 13, 2022

The barracudavpn component of the Barracuda VPN Client prior to version 5.0.2.7 for Linux, macOS,... High Unreviewed

CVE-2019-6724 was published May 13, 2022

InternetSoft FTP Commander 8.02 and prior has an untrusted search path, allowing DLL hijacking... High Unreviewed

CVE-2017-11749 was published May 13, 2022

elf/dl-load.c in the GNU C Library (aka glibc or libc6) 2.19 through 2.26 mishandles RPATH and... High Unreviewed

CVE-2017-16997 was published May 13, 2022

Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft... High Unreviewed

CVE-2010-3190 was published May 13, 2022

Avecto Defendpoint 4 prior to 4.4 SR6 and 5 prior to 5.1 SR1 has an Untrusted Search Path... High Unreviewed

CVE-2018-10959 was published May 13, 2022

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability,... High Unreviewed

CVE-2017-5233 was published May 13, 2022

Untrusted search path vulnerability in Installers of ART EX Driver for ApeosPort-VI C7771/C6671... High Unreviewed

CVE-2017-10850 was published May 13, 2022

** DISPUTED ** Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as... High Unreviewed

CVE-2011-3640 was published May 13, 2022

Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and... High Unreviewed

CVE-2012-2040 was published May 13, 2022

A DLL hijacking vulnerability in Trend Micro Security 2019 (Consumer) versions below 15.0.0.1163... High Unreviewed

CVE-2018-18333 was published May 13, 2022

Untrusted search path vulnerability in the installer of PhishWall Client Internet Explorer... High Unreviewed

CVE-2017-2130 was published May 13, 2022

A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an... High Unreviewed

CVE-2018-6218 was published May 13, 2022

Untrusted search path vulnerability in Setup file of advance preparation for e-Tax software (WEB... High Unreviewed

CVE-2017-2226 was published May 13, 2022

Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0... High Unreviewed

CVE-2016-5330 was published May 13, 2022

Puppet Enterprise 2016.4.x prior to 2016.4.12, Puppet Enterprise 2017.3.x prior to 2017.3.7,... High Unreviewed

CVE-2018-6513 was published May 13, 2022

Untrusted search path vulnerability in Microsoft Internet Explorer 9 on Windows Server 2008 R2... High Unreviewed

CVE-2011-2019 was published May 13, 2022

Multiple untrusted search path vulnerabilities in Putty beta 0.67 allow local users to execute... High Unreviewed

CVE-2016-6167 was published May 3, 2022

Trend Micro Endpoint Sensor 1.6 before b1290 has a DLL hijacking vulnerability that allows remote... High Unreviewed

CVE-2017-6798 was published May 3, 2022

Untrusted search path vulnerability in the Python module in gedit allows local users to execute... Moderate Unreviewed

CVE-2009-0314 was published May 2, 2022

Untrusted search path vulnerability in ingvalidpw in Ingres 2.6, Ingres 2006 release 1 (aka 9.0.4... High Unreviewed

CVE-2008-3357 was published May 1, 2022

Previous 1 2 … 16 17 18 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

485 advisories