Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,342
Erlang
31
GitHub Actions
22
Go
2,106
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

178 advisories

Loading
Unquoted Windows search path vulnerability in Adobe Creative Cloud Desktop Application before 3.8... High Unreviewed
CVE-2016-6935 was published May 17, 2022
Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local... High Unreviewed
CVE-2016-5793 was published May 17, 2022
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows... Moderate Unreviewed
CVE-2022-46662 was published Dec 21, 2022
Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers... High Unreviewed
CVE-2022-36384 was published Nov 11, 2022
An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License'... Critical Unreviewed
CVE-2022-36344 was published Aug 17, 2022
HMA VPN v5.3.5913.0 contains an unquoted service path which allows attackers to escalate... High Unreviewed
CVE-2022-26634 was published May 21, 2022
Private Internet Access v3.3 contains an unquoted service path which allows attackers to escalate... High Unreviewed
CVE-2022-27092 was published May 21, 2022
SLM has an issue with Windows Unquoted/Trusted Service Paths Security Issue. All installations... High Unreviewed
CVE-2022-0883 was published May 19, 2022
BattlEye v0.9 contains an unquoted service path which allows attackers to escalate privileges to... High Unreviewed
CVE-2022-27095 was published May 21, 2022
MiniTool Partition Wizard v12.0 contains an unquoted service path which allows attackers to... High Unreviewed
CVE-2022-29320 was published May 21, 2022
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low... High Unreviewed
CVE-2022-33920 was published Oct 13, 2022
Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate... High Unreviewed
CVE-2022-27094 was published May 21, 2022
A potential security vulnerability has been identified with certain versions of HP System Event... Moderate Unreviewed
CVE-2019-18915 was published May 24, 2022
Unquoted service path in Intel(R) Graphics Drivers before versions 15.33.49.5100, 15.36.38.5117,... Low Unreviewed
CVE-2020-0507 was published May 24, 2022
A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2),... High Unreviewed
CVE-2020-7581 was published May 24, 2022
Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious... Moderate Unreviewed
CVE-2020-14049 was published May 24, 2022
A vulnerability has been identified in SIMATIC Automation Tool (All versions), SIMATIC NET PC... High Unreviewed
CVE-2020-7580 was published May 24, 2022
Avira Security for Windows contains an unquoted service path which allows attackers with local... Moderate Unreviewed
CVE-2022-4429 was published Jan 10, 2023
TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A... Moderate Unreviewed
CVE-2020-13699 was published May 24, 2022
Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because ... High Unreviewed
CVE-2020-27992 was published May 24, 2022
The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing ... High Unreviewed
CVE-2020-27645 was published May 24, 2022
SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this... Moderate Unreviewed
CVE-2020-5147 was published May 24, 2022
A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation... High Unreviewed
CVE-2020-28209 was published May 24, 2022
Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker... Moderate Unreviewed
CVE-2021-36631 was published Dec 22, 2022
The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing ... High Unreviewed
CVE-2020-27644 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database