Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

176 advisories

Loading
A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as... Moderate Unreviewed
CVE-2023-2417 was published Apr 29, 2023
Unquoted Search Path or Element vulnerability in 42Gears Surelock Windows SureLock Service ... High Unreviewed
CVE-2023-2331 was published Apr 27, 2023
WAB-MAT Ver.5.0.0.8 and earlier starts another program with an unquoted file path. Since a... High Unreviewed
CVE-2023-22282 was published Apr 11, 2023
VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which... High Unreviewed
CVE-2023-24671 was published Mar 16, 2023
A vulnerability was found in phjounin TFTPD64-SE 4.64 and classified as critical. This issue... High Unreviewed
CVE-2023-0887 was published Feb 17, 2023
Dentsply Sirona Sidexis <= 4.3 is vulnerable to Unquoted Service Path. High Unreviewed
CVE-2022-44264 was published Jan 27, 2023
In multiple versions of HIMA PC based Software an unquoted Windows search path vulnerability... High Unreviewed
CVE-2022-4258 was published Jan 16, 2023
Avira Security for Windows contains an unquoted service path which allows attackers with local... Moderate Unreviewed
CVE-2022-4429 was published Jan 10, 2023
Realtek Audio Drivers for Windows, as used on the Lenovo ThinkPad X1 Carbon 20A7, 20A8, 20BS, and... High Unreviewed
CVE-2019-19705 was published Dec 26, 2022
Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker... Moderate Unreviewed
CVE-2021-36631 was published Dec 22, 2022
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows... Moderate Unreviewed
CVE-2022-46662 was published Dec 21, 2022
IOBit IOTransfer V4 is vulnerable to Unquoted Service Path. High Unreviewed
CVE-2022-37197 was published Nov 18, 2022
Unquoted search path in the installer software for some Intel(r) NUC Kit Wireless Adapter drivers... High Unreviewed
CVE-2022-36384 was published Nov 11, 2022
Beijing Feishu Technology Co., Ltd Feishu v3.40.3 was discovered to contain an untrusted search... High Unreviewed
CVE-2021-3305 was published Oct 18, 2022
Dell GeoDrive, versions prior to 2.2, contains an Unquoted File Path vulnerability. A low... High Unreviewed
CVE-2022-33920 was published Oct 13, 2022
Panini Everest Engine 2.0.4 allows unprivileged users to create a file named Everest.exe in the ... High Unreviewed
CVE-2022-39959 was published Oct 8, 2022
In SAP Business One application when a service is created, the executable path contains spaces... High Unreviewed
CVE-2022-35292 was published Sep 14, 2022
Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update... High Unreviewed
CVE-2022-1697 was published Sep 7, 2022
An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License'... Critical Unreviewed
CVE-2022-36344 was published Aug 17, 2022
There is an unquoted service path in ASUSTeK Aura Ready Game SDK service (GameSDK.exe) 1.0.0.4.... High Unreviewed
CVE-2022-35899 was published Jul 22, 2022
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This... High Unreviewed
CVE-2016-15003 was published Jul 19, 2022
SAP BusinessObjects BW Publisher Service - versions 420, 430, uses a search path that contains an... High Unreviewed
CVE-2022-31591 was published Jul 13, 2022
Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which... High Unreviewed
CVE-2022-2147 was published Jun 24, 2022
SAP PowerDesigner Proxy - version 16.7, allows an attacker with low privileges and has local... High Unreviewed
CVE-2022-31590 was published Jun 15, 2022
Unquoted search path in the installer for the Intel(R) NUC M15 Laptop Kit Keyboard LED Service... High Unreviewed
CVE-2021-33095 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database