Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

42 advisories

Loading
SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this... Moderate Unreviewed
CVE-2020-5147 was published May 24, 2022
TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A... Moderate Unreviewed
CVE-2020-13699 was published May 24, 2022
Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious... Moderate Unreviewed
CVE-2020-14049 was published May 24, 2022
A potential security vulnerability has been identified with certain versions of HP System Event... Moderate Unreviewed
CVE-2019-18915 was published May 24, 2022
Unquoted service path in the installer for the Intel(R) SCS Discovery Utility version 12.0.0.129... Moderate Unreviewed
CVE-2019-11093 was published May 24, 2022
Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20... Moderate Unreviewed
CVE-2017-5873 was published May 17, 2022
An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and... Moderate Unreviewed
CVE-2017-14019 was published May 13, 2022
Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server,... Moderate Unreviewed
CVE-2018-2406 was published May 13, 2022
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel... Moderate Unreviewed
CVE-2014-5455 was published May 13, 2022
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender... Moderate Unreviewed
CVE-2015-4173 was published May 13, 2022
In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 3.1 or prior and Xcelera... Moderate Unreviewed
CVE-2018-14789 was published Apr 30, 2022
Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute... Moderate Unreviewed
CVE-2022-27965 was published Apr 2, 2022
Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to... Moderate Unreviewed
CVE-2022-27964 was published Apr 2, 2022
Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to... Moderate Unreviewed
CVE-2022-27966 was published Apr 2, 2022
Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute... Moderate Unreviewed
CVE-2022-27963 was published Apr 2, 2022
A local unquoted search path security vulnerability has been identified in HPE Agentless... Moderate Unreviewed
CVE-2021-29218 was published Feb 10, 2022
A local administrator could prevent the HMPA service from starting despite tamper protection... Moderate Unreviewed
CVE-2021-25269 was published Nov 27, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database