GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,194
Composer 4,342
Erlang 31
GitHub Actions 22
Go 2,106
Maven 5,281
npm 3,764
NuGet 679
pip 3,451
Pub 12
RubyGems 892
Rust 886
Swift 37

Unreviewed advisories

All unreviewed 243,110

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

178 advisories

Filter by severity

Sort by

Least recently updated

An unquoted service path in SAPSetup, version - 9.0, could lead to privilege escalation during... High Unreviewed

CVE-2021-27608 was published May 24, 2022

Unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool prior to 21.2... High Unreviewed

CVE-2021-23879 was published May 24, 2022

An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki... Moderate Unreviewed

CVE-2021-31553 was published May 24, 2022

The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing ... High Unreviewed

CVE-2020-27644 was published May 24, 2022

Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker... Moderate Unreviewed

CVE-2021-36631 was published Dec 22, 2022

A CWE-428 Windows Unquoted Search Path vulnerability exists in EcoStruxure Building Operation... High Unreviewed

CVE-2020-28209 was published May 24, 2022

SonicWall NetExtender Windows client vulnerable to unquoted service path vulnerability, this... Moderate Unreviewed

CVE-2020-5147 was published May 24, 2022

The Inventory module of the 1E Client 5.0.0.745 doesn't handle an unquoted path when executing ... High Unreviewed

CVE-2020-27645 was published May 24, 2022

Dr.Fone 3.0.0 allows local users to gain privileges via a Trojan horse DriverInstall.exe because ... High Unreviewed

CVE-2020-27992 was published May 24, 2022

TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A... Moderate Unreviewed

CVE-2020-13699 was published May 24, 2022

Avira Security for Windows contains an unquoted service path which allows attackers with local... Moderate Unreviewed

CVE-2022-4429 was published Jan 10, 2023

A vulnerability has been identified in SIMATIC Automation Tool (All versions), SIMATIC NET PC... High Unreviewed

CVE-2020-7580 was published May 24, 2022

Viber for Windows up to 13.2.0.39 does not properly quote its custom URI handler. A malicious... Moderate Unreviewed

CVE-2020-14049 was published May 24, 2022

A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2),... High Unreviewed

CVE-2020-7581 was published May 24, 2022

Unquoted service path in Intel(R) Graphics Drivers before versions 15.33.49.5100, 15.36.38.5117,... Low Unreviewed

CVE-2020-0507 was published May 24, 2022

A potential security vulnerability has been identified with certain versions of HP System Event... Moderate Unreviewed

CVE-2019-18915 was published May 24, 2022

Sony PlayMemories Home v6.0 contains an unquoted service path which allows attackers to escalate... High Unreviewed

CVE-2022-27094 was published May 21, 2022

Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low... High Unreviewed

CVE-2022-33920 was published Oct 13, 2022

MiniTool Partition Wizard v12.0 contains an unquoted service path which allows attackers to... High Unreviewed

CVE-2022-29320 was published May 21, 2022

BattlEye v0.9 contains an unquoted service path which allows attackers to escalate privileges to... High Unreviewed

CVE-2022-27095 was published May 21, 2022

SLM has an issue with Windows Unquoted/Trusted Service Paths Security Issue. All installations... High Unreviewed

CVE-2022-0883 was published May 19, 2022

HMA VPN v5.3.5913.0 contains an unquoted service path which allows attackers to escalate... High Unreviewed

CVE-2022-26634 was published May 21, 2022

Private Internet Access v3.3 contains an unquoted service path which allows attackers to escalate... High Unreviewed

CVE-2022-27092 was published May 21, 2022

An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License'... Critical Unreviewed

CVE-2022-36344 was published Aug 17, 2022

Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers... High Unreviewed

CVE-2022-36384 was published Nov 11, 2022

Previous 1 2 3 4 5 6 7 8 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

178 advisories