Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

127 advisories

Loading
Rapid7 Insight Agent versions 3.1.2.38 and earlier suffer from a privilege escalation... High Unreviewed
CVE-2022-0237 was published Mar 19, 2022
FreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows... High Unreviewed
CVE-2022-27052 was published Apr 2, 2022
An Unquoted Service Path vulnerability exists in FreeLAN 2.2 via a specially crafted file in the... High Unreviewed
CVE-2021-43455 was published Apr 5, 2022
An Unquoted Service Path vulnerability exits in Vembu BDR 4.2.0.1 via a specially crafted file in... High Unreviewed
CVE-2021-43458 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in System Explorer 7.0.0 via via a specially... High Unreviewed
CVE-2021-43460 was published Apr 5, 2022
BitComet Service for Windows before version 1.8.6 contains an unquoted service path vulnerability... High Unreviewed
CVE-2022-27050 was published Apr 2, 2022
An Unquoted Service Path vulnerability exists in AnyTXT Searcher 1.2.394 via a specially crafted... High Unreviewed
CVE-2021-43454 was published Apr 5, 2022
An Unquoted Service Path vulnerablility exists in Rumble Mail Server 0.51.3135 via via a... High Unreviewed
CVE-2021-43456 was published Apr 5, 2022
There is an unquoted service path in Sherpa Connector Service (SherpaConnectorService.exe) 2020.2... High Unreviewed
CVE-2022-23909 was published Apr 6, 2022
An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 via a specially crafted file in... High Unreviewed
CVE-2021-43463 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in bVPN 2.5.1 via a specially crafted file in the... High Unreviewed
CVE-2021-43457 was published Apr 5, 2022
Ivanti DSM Remote <= 6.3.1.1862 is vulnerable to an unquoted service path allowing local users to... High Unreviewed
CVE-2022-27088 was published Apr 12, 2022
In Fujitsu PlugFree Network <= 7.3.0.3, an Unquoted service path in PFNService.exe software... High Unreviewed
CVE-2022-27089 was published Apr 12, 2022
Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update... High Unreviewed
CVE-2022-1697 was published Sep 7, 2022
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local... High Unreviewed
CVE-2022-31590 was published Jun 15, 2022
Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which... High Unreviewed
CVE-2022-2147 was published Jun 24, 2022
SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an... High Unreviewed
CVE-2022-31591 was published Jul 13, 2022
Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions... High Unreviewed
CVE-2016-8225 was published May 17, 2022
There is an unquoted service path in ASUSTeK Aura Ready Game SDK service (GameSDK.exe) 1.0.0.4.... High Unreviewed
CVE-2022-35899 was published Jul 22, 2022
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This... High Unreviewed
CVE-2016-15003 was published Jul 19, 2022
Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.8... High Unreviewed
CVE-2016-6935 was published May 17, 2022
Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local... High Unreviewed
CVE-2016-5793 was published May 17, 2022
Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers... High Unreviewed
CVE-2022-36384 was published Nov 11, 2022
HMA VPN v5.3.5913.0 contains an unquoted service path which allows attackers to escalate... High Unreviewed
CVE-2022-26634 was published May 21, 2022
Private Internet Access v3.3 contains an unquoted service path which allows attackers to escalate... High Unreviewed
CVE-2022-27092 was published May 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database