GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
38 advisories
Filter by severity
Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to...
Moderate
Unreviewed
CVE-2022-27964
was published
Apr 2, 2022
Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to...
Moderate
Unreviewed
CVE-2022-27966
was published
Apr 2, 2022
Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute...
Moderate
Unreviewed
CVE-2022-27963
was published
Apr 2, 2022
Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute...
Moderate
Unreviewed
CVE-2022-27965
was published
Apr 2, 2022
Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20...
Moderate
Unreviewed
CVE-2017-5873
was published
May 17, 2022
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows...
Moderate
Unreviewed
CVE-2022-46662
was published
Dec 21, 2022
A potential security vulnerability has been identified with certain versions of HP System Event...
Moderate
Unreviewed
CVE-2019-18915
was published
May 24, 2022
Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious...
Moderate
Unreviewed
CVE-2020-14049
was published
May 24, 2022
Avira Security for Windows contains an unquoted service path which allows attackers with local...
Moderate
Unreviewed
CVE-2022-4429
was published
Jan 10, 2023
TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A...
Moderate
Unreviewed
CVE-2020-13699
was published
May 24, 2022
SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this...
Moderate
Unreviewed
CVE-2020-5147
was published
May 24, 2022
Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker...
Moderate
Unreviewed
CVE-2021-36631
was published
Dec 22, 2022
An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki...
Moderate
Unreviewed
CVE-2021-31553
was published
May 24, 2022
Unisys Stealth 5.1 before 5.1.025.0 and 6.0 before 6.0.055.0 has an unquoted Windows search path...
Moderate
Unreviewed
CVE-2021-35056
was published
May 24, 2022
As a result of an unquoted service path vulnerability present in the Kiwi Syslog Server...
Moderate
Unreviewed
CVE-2021-35231
was published
May 24, 2022
In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 3.1 or prior and Xcelera...
Moderate
Unreviewed
CVE-2018-14789
was published
Apr 30, 2022
A local administrator could prevent the HMPA service from starting despite tamper protection...
Moderate
Unreviewed
CVE-2021-25269
was published
Nov 27, 2021
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender...
Moderate
Unreviewed
CVE-2015-4173
was published
May 13, 2022
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel...
Moderate
Unreviewed
CVE-2014-5455
was published
May 13, 2022
Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server,...
Moderate
Unreviewed
CVE-2018-2406
was published
May 13, 2022
An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and...
Moderate
Unreviewed
CVE-2017-14019
was published
May 13, 2022
A local unquoted search path security vulnerability has been identified in HPE Agentless...
Moderate
Unreviewed
CVE-2021-29218
was published
Feb 10, 2022
A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as...
Moderate
Unreviewed
CVE-2023-2417
was published
Apr 29, 2023
A vulnerability, which was classified as problematic, has been found in DigitalPersona FPSensor 1...
Moderate
Unreviewed
CVE-2023-2644
was published
May 11, 2023
A vulnerability, which was classified as problematic, was found in Topaz OFD 2.11.0.201. This...
Moderate
Unreviewed
CVE-2023-5012
was published
Sep 16, 2023
ProTip!
Advisories are also available from the
GraphQL API