GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
486 advisories
Filter by severity
pnpm no-script global cache poisoning via overrides / `ignore-scripts` evasion
Moderate
CVE-2024-53866
was published
for
pnpm
(npm)
Dec 10, 2024
A maliciously crafted DLL file, when placed in the same directory as an RVT file could be loaded...
High
Unreviewed
CVE-2024-11454
was published
Dec 9, 2024
DLL injection in Veeam Agent for Windows can occur if the system's PATH variable includes...
High
Unreviewed
CVE-2024-45207
was published
Dec 4, 2024
An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted...
High
Unreviewed
CVE-2024-50986
was published
Nov 15, 2024
Substance3D - Painter versions 10.1.0 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-49515
was published
Nov 12, 2024
A untrusted search path in Fortinet FortiClientWindows versions 7.4.0, versions 7.2.4 through 7.2...
High
Unreviewed
CVE-2024-36507
was published
Nov 12, 2024
Microsoft.SqlServer.XEvent.Configuration.dll Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-49043
was published
Nov 12, 2024
A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT...
High
Unreviewed
CVE-2024-7995
was published
Nov 5, 2024
Untrusted Search Path vulnerability in OpenText™ Application Lifecycle Management (ALM),Quality...
Moderate
Unreviewed
CVE-2023-32266
was published
Oct 16, 2024
Adobe Framemaker versions 2020.6, 2022.4 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-47422
was published
Oct 9, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43616
was published
Oct 8, 2024
Microsoft Office Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43576
was published
Oct 8, 2024
A potential security vulnerability
has been identified in the HP One Agent for certain HP PC...
High
Unreviewed
CVE-2024-8733
was published
Oct 2, 2024
A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This...
High
Unreviewed
CVE-2024-9325
was published
Sep 29, 2024
A DLL Hijacking caused by drive remapping combined with a poisoning of the activation cache in...
High
Unreviewed
CVE-2024-6769
was published
Sep 26, 2024
DLL hijacking in the management console of Ivanti Workspace Control version 10.18.0.0 and below...
High
Unreviewed
CVE-2024-44103
was published
Sep 10, 2024
SAP BusinessObjects Business Intelligence Platform allows a high privilege user to run client...
Moderate
Unreviewed
CVE-2024-45281
was published
Sep 10, 2024
Yandex Browser for Desktop before 24.7.1.380 has a DLL Hijacking Vulnerability because an...
High
Unreviewed
CVE-2024-6473
was published
Sep 3, 2024
An untrusted search path vulnerability in the AprolConfigureCCServices of B&R APROL <= R 4.2....
High
Unreviewed
CVE-2024-5622
was published
Aug 29, 2024
An untrusted search path vulnerability in B&R APROL <= R 4.4-00P3 may be used by an authenticated...
Moderate
Unreviewed
CVE-2024-5623
was published
Aug 29, 2024
Dell SupportAssist for Home PCs Installer exe version 4.0.3 contains a privilege escalation...
High
Unreviewed
CVE-2024-38305
was published
Aug 21, 2024
Untrusted search path in the installer for Zoom Workplace Desktop App for macOS and Zoom Meeting...
Moderate
Unreviewed
CVE-2024-42439
was published
Aug 14, 2024
Dimension versions 3.4.11 and earlier are affected by an Untrusted Search Path vulnerability that...
High
Unreviewed
CVE-2024-41865
was published
Aug 14, 2024
Untrusted Search Path vulnerability in Cato Networks SDP Client on Windows allows Privilege...
High
Unreviewed
CVE-2024-6975
was published
Jul 31, 2024
Premiere Pro versions 23.6.5, 24.4.1 and earlier are affected by an Untrusted Search Path...
High
Unreviewed
CVE-2024-34123
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API