Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

588 advisories

Loading
A potential DLL hijacking vulnerability was discovered in Lenovo Browser during an internal... High Unreviewed
CVE-2025-9201 was published Sep 11, 2025
Sunshine for Windows, version v2025.122.141614, contains a DLL search-order hijacking... High Unreviewed
CVE-2025-10198 was published Sep 9, 2025
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0... High Unreviewed
CVE-2025-10213 was published Sep 10, 2025
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0... High Unreviewed
CVE-2025-10215 was published Sep 10, 2025
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0... High Unreviewed
CVE-2025-10214 was published Sep 10, 2025
DLL search order hijacking vulnerability in the wave.exe executable for Windows 11, version 1.27... High Unreviewed
CVE-2025-40979 was published Sep 10, 2025
Foxit PDF Reader Update Service Uncontrolled Search Path Element Local Privilege Escalation... High Unreviewed
CVE-2025-9330 was published Sep 2, 2025
NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-8614 was published Sep 2, 2025
Substance3D - Modeler versions 1.22.0 and earlier are affected by an Uncontrolled Search Path... High Unreviewed
CVE-2025-49571 was published Aug 12, 2025
The affected setup component is vulnerable to DLL hijacking. This could allow an attacker to... High Unreviewed
CVE-2025-30033 was published Aug 12, 2025
Paramount Macrium Reflect through 2025-06-26 allows attackers to execute arbitrary code with... High Unreviewed
CVE-2025-53394 was published Aug 4, 2025
Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code... High Unreviewed
CVE-2025-53395 was published Aug 4, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-25011 was published Jul 30, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-0712 was published Jul 30, 2025
A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0,... High Unreviewed
CVE-2024-13976 was published Jul 25, 2025
A DLL hijacking vulnerability was reported in the Motorola Software Fix (Rescue and Smart... High Unreviewed
CVE-2025-1700 was published Jul 17, 2025
A local privilege escalation vulnerability in the Intercept X for Windows installer prior version... High Unreviewed
CVE-2025-7472 was published Jul 17, 2025
PSEvents.exe in multiple Panda Security products runs hourly with SYSTEM privileges and loads DLL... High Unreviewed
CVE-2025-34109 was published Jul 15, 2025
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This... High Unreviewed
CVE-2025-4539 was published May 11, 2025
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user to gain elevated privileges due to an unqualified... High Unreviewed
CVE-2025-36004 was published Jun 26, 2025
An uncontrolled search path vulnerability in the Trend Micro Apex One Data Loss Prevention module... High Unreviewed
CVE-2025-49155 was published Jun 17, 2025
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 could allow a user to gain elevated privileges due to an... High Unreviewed
CVE-2025-33122 was published Jun 17, 2025
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-5480 was published Jun 6, 2025
A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16.... High Unreviewed
CVE-2025-5180 was published May 26, 2025
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking... High Unreviewed
CVE-2023-51711 was published Jan 24, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database