Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

407 advisories

Loading
High severity vulnerability that affects electron High
CVE-2016-1202 was published for electron (npm) Oct 24, 2017
Anaconda Anaconda3 through 2021.11.0.0 and Miniconda3 through 11.0.0.0 can create a world... High Unreviewed
CVE-2022-26526 was published Mar 18, 2022
Untrusted search path vulnerability in AttacheCase ver.4.0.2.7 and earlier allows an attacker to... High Unreviewed
CVE-2022-25348 was published Apr 1, 2022
Untrusted search path vulnerability in AttacheCase ver.3.6.1.0 and earlier allows an attacker to... High Unreviewed
CVE-2022-28128 was published Apr 1, 2022
The writeRandomBytes_RtlGenRandom function in xmlparse.c in libexpat in Expat 2.2.1 and 2.2.2 on... High Unreviewed
CVE-2017-11742 was published May 17, 2022
When Octopus Server is installed using a custom folder location, folder ACLs are not set... High Unreviewed
CVE-2021-26556 was published May 24, 2022
Sandboxie installer 5071703 has a DLL Hijacking or Unsafe DLL Loading Vulnerability via a Trojan... High Unreviewed
CVE-2017-12480 was published May 17, 2022
VIT Spider Player 2.5.3 has an untrusted search path, allowing DLL hijacking via a Trojan horse... High Unreviewed
CVE-2017-11748 was published May 17, 2022
Untrusted search path vulnerability in Tween Ver1.6.6.0 and earlier allows an attacker to gain... High Unreviewed
CVE-2017-2279 was published May 17, 2022
Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver... High Unreviewed
CVE-2017-2272 was published May 17, 2022
Untrusted search path vulnerability in Installer of Lhaz version 2.4.0 and earlier allows an... High Unreviewed
CVE-2017-2246 was published May 17, 2022
Untrusted search path vulnerability in Encrypted files in self-decryption format created by... High Unreviewed
CVE-2017-2270 was published May 17, 2022
Adobe Shockwave versions 12.2.7.197 and earlier have an insecure library loading (DLL hijacking)... High Unreviewed
CVE-2017-2983 was published May 17, 2022
Untrusted search path vulnerability in The installer of Charamin OMP Version 1.1.7.4 and earlier,... High Unreviewed
CVE-2017-2227 was published May 17, 2022
Untrusted search path vulnerability in Installer of PDF Digital Signature Plugin (G2.30) and... High Unreviewed
CVE-2017-2233 was published May 17, 2022
Untrusted search path vulnerability in Self-extracting archive files created by Lhaz version 2.4... High Unreviewed
CVE-2017-2247 was published May 17, 2022
Untrusted search path vulnerability in Encrypted files in self-decryption format created by... High Unreviewed
CVE-2017-2268 was published May 17, 2022
Untrusted search path vulnerability in Installer of Electronic tendering and bid opening system... High Unreviewed
CVE-2017-2208 was published May 17, 2022
Untrusted search path vulnerability in Installer of Denshinouhin Check System (for Ministry of... High Unreviewed
CVE-2017-2188 was published May 17, 2022
Untrusted search path vulnerability in Douro Kouji Kanseizutou Check Program Ver3.1 ... High Unreviewed
CVE-2017-2230 was published May 17, 2022
Untrusted search path vulnerability in the installer in VMware Workstation Pro 12.x before 12.5.0... High Unreviewed
CVE-2016-7085 was published May 17, 2022
Untrusted search path vulnerability in Installer of Shinseiyo Sogo Soft (4.8A) and earlier allows... High Unreviewed
CVE-2017-2232 was published May 17, 2022
Untrusted search path vulnerability in Installer of Yahoo! Toolbar (for Internet explorer) v8.0.0... High Unreviewed
CVE-2017-2253 was published May 17, 2022
Untrusted search path vulnerability in Self-extracting encrypted files created by AttacheCase ver... High Unreviewed
CVE-2017-2271 was published May 17, 2022
Untrusted search path vulnerability in Installer of Lhaz+ version 3.4.0 and earlier allows an... High Unreviewed
CVE-2017-2248 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database