Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,904
Erlang
38
GitHub Actions
38
Go
2,566
Maven
5,000+
npm
4,237
NuGet
753
pip
4,001
Pub
12
RubyGems
953
Rust
1,042
Swift
45
Unreviewed advisories
All unreviewed
5,000+

449 advisories

Loading
Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 contain a DLL preloading... High Unreviewed
CVE-2017-5236 was published May 17, 2022
Untrusted search path vulnerability in the installer of PhishWall Client Internet Explorer before... High Unreviewed
CVE-2016-4846 was published May 17, 2022
Untrusted search path vulnerability in Empirical Project Monitor - eXtended all versions allows... High Unreviewed
CVE-2017-2175 was published May 17, 2022
Untrusted search path vulnerability in Installer of electronic tendering and bid opening system... High Unreviewed
CVE-2017-2178 was published May 17, 2022
Untrusted search path vulnerability in Amazon Kindle for PC before 1.19 allows local users to... High Unreviewed
CVE-2017-6189 was published May 17, 2022
Rapid7 Metasploit Pro installers prior to version 4.13.0-2017022101 contain a DLL preloading... High Unreviewed
CVE-2017-5235 was published May 17, 2022
Adobe Thor versions 3.9.5.353 and earlier have a vulnerability in the directory search path used... High Unreviewed
CVE-2017-3007 was published May 17, 2022
Rapid7 Insight Collector installers prior to version 1.0.16 contain a DLL preloading... High Unreviewed
CVE-2017-5234 was published May 17, 2022
All editions of Rapid7 Nexpose installers prior to version 6.4.24 contain a DLL preloading... High Unreviewed
CVE-2017-5232 was published May 17, 2022
Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before... High Unreviewed
CVE-2016-1281 was published May 17, 2022
Untrusted search path vulnerability in Foxit Reader before 5.0.2.0718 allows local users to gain... High Unreviewed
CVE-2011-3691 was published May 17, 2022
DLL Search Order Hijacking vulnerability in Microsoft Windows Client in McAfee True Key (TK)... High Unreviewed
CVE-2018-6700 was published May 13, 2022
An arbitrary file write vulnerability in Avast Premium Security before v21.11.2500 (build 21.11... High Unreviewed
CVE-2022-28964 was published May 21, 2022
In PaperStream IP (TWAIN) 1.42.0.5685 (Service Update 7), the FJTWSVIC service running with... High Unreviewed
CVE-2018-16156 was published May 24, 2022
Creative Cloud Desktop Application (installer) versions 4.7.0.400 and earlier have an insecure... High Unreviewed
CVE-2019-7093 was published May 24, 2022
NVIDIA Windows GPU Display driver software for Windows (all versions) contains a vulnerability in... High Unreviewed
CVE-2019-5676 was published May 24, 2022
A DLL hijacking vulnerability exists in the Trend Micro Security's 2019 consumer family of... High Unreviewed
CVE-2019-14686 was published May 24, 2022
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS... High Unreviewed
CVE-2019-12576 was published May 24, 2022
Adobe Premiere Pro CC versions 13.1.2 and earlier have an insecure library loading (dll hijacking... High Unreviewed
CVE-2019-7931 was published May 24, 2022
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited,... High Unreviewed
CVE-2019-14684 was published May 24, 2022
Adobe Prelude CC versions 8.1 and earlier have an insecure library loading (dll hijacking)... High Unreviewed
CVE-2019-7961 was published May 24, 2022
Adobe Character Animator versions 2.1 and earlier have an insecure library loading (dll hijacking... High Unreviewed
CVE-2019-7870 was published May 24, 2022
DLL preloading vulnerability in Autodesk Design Review versions 2011, 2012, 2013, and 2018. An... High Unreviewed
CVE-2019-7362 was published May 24, 2022
A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier... High Unreviewed
CVE-2019-6826 was published May 24, 2022
A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited,... High Unreviewed
CVE-2019-14687 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database