Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+

456 advisories

Loading
Untrusted search path vulnerability in Flets Install Tool all versions distributed through the... High Unreviewed
CVE-2017-10828 was published May 17, 2022
Untrusted search path vulnerability in Security Kinou Mihariban v1.0.21 and earlier allows an... High Unreviewed
CVE-2017-10826 was published May 17, 2022
Untrusted search path vulnerability in Flets Azukeru for Windows Auto Backup Tool v1.0.3.0 and... High Unreviewed
CVE-2017-10827 was published May 17, 2022
Multiple untrusted search path vulnerabilities in installer in Synology Photo Station Uploader... High Unreviewed
CVE-2017-11159 was published May 13, 2022
Sandboxie installer 5071703 has a DLL Hijacking or Unsafe DLL Loading Vulnerability via a Trojan... High Unreviewed
CVE-2017-12480 was published May 17, 2022
The sudo helper in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before... High Unreviewed
CVE-2017-7642 was published May 13, 2022
Untrusted search path vulnerability in Douroshisetu Kihon Data Sakusei System Ver1.0.2 and... High Unreviewed
CVE-2017-2229 was published May 17, 2022
Untrusted search path vulnerability in Douro Kouji Kanseizutou Check Program Ver3.1 ... High Unreviewed
CVE-2017-2230 was published May 17, 2022
Untrusted search path vulnerability in Installer for PrimeDrive Desktop Application version 1.4.4... High Unreviewed
CVE-2017-2167 was published May 17, 2022
Untrusted search path vulnerability in Vivaldi installer for Windows prior to version 1.7.735.48... High Unreviewed
CVE-2017-2156 was published May 17, 2022
Untrusted search path vulnerability in PrimeDrive Desktop Application 1.4.3 and earlier allows... High Unreviewed
CVE-2017-2108 was published May 17, 2022
Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows... High Unreviewed
CVE-2016-10009 was published May 14, 2022
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8,... High Unreviewed
CVE-2016-0016 was published May 14, 2022
Untrusted search path vulnerability in the CMainThread::launchDownloader function in... High Unreviewed
CVE-2015-6305 was published May 17, 2022
Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft... High Unreviewed
CVE-2010-3190 was published May 13, 2022
Poetry vulnerable to Untrusted Search Path leading to Local Code Execution on Windows High
CVE-2022-36070 was published for poetry (pip) Oct 11, 2022
paul-gerste-sonarsource
Credited to paul-gerste-sonarsource
Untrusted search path in System Center allows an authorized attacker to elevate privileges locally. High Unreviewed
CVE-2025-27743 was published Apr 8, 2025
Untrusted search path vulnerability in ELECOM Camera Assistant 1.00 and QuickFileDealer Ver.1.2.1... High Unreviewed
CVE-2023-22368 was published Feb 15, 2023
Illustrator versions 29.2.1, 28.7.4 and earlier are affected by an Untrusted Search Path... High Unreviewed
CVE-2025-27167 was published Mar 11, 2025
Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability High Unreviewed
CVE-2025-21399 was published Jan 17, 2025
A vulnerability was found in Blizzard Battle.Net up to 2.39.0.15212 on Windows and classified as... High Unreviewed
CVE-2025-1804 was published Mar 1, 2025
mongosh vulnerable to local privilege escalation High
CVE-2025-1756 was published for mongosh (npm) Feb 27, 2025
MongoDB Compass may be susceptible to local privilege escalation under certain conditions... High Unreviewed
CVE-2025-1755 was published Feb 27, 2025
There is an untrusted search path vulnerability in Esri ArcGIS AllSource 1.2 and 1.3 that may... High Unreviewed
CVE-2025-1068 was published Feb 25, 2025
A vulnerability was found in Kong Insomnia up to 10.3.0 and classified as critical. This issue... High Unreviewed
CVE-2025-1353 was published Feb 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database