Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,340
Erlang
31
GitHub Actions
22
Go
2,101
Maven
5,000+
npm
3,764
NuGet
679
pip
3,451
Pub
12
RubyGems
892
Rust
885
Swift
37
Unreviewed advisories
All unreviewed
5,000+

176 advisories

Loading
Nero 7.10.1.0 has an unquoted BINARY_PATH_NAME for NBService, exploitable via a Trojan horse Nero... High Unreviewed
CVE-2017-15383 was published May 17, 2022
Unquoted Windows search path vulnerability in the panda_url_filtering service in Panda Global... High Unreviewed
CVE-2018-6321 was published May 14, 2022
Unquoted Windows search path vulnerability in the srvInventoryWebServer service in 10-Strike... High Unreviewed
CVE-2018-6016 was published May 14, 2022
Adobe Creative Cloud Desktop Application versions 4.4.1.298 and earlier have an exploitable... High Unreviewed
CVE-2018-4873 was published May 14, 2022
Unquoted service paths in Intel Processor Diagnostic Tool (IPDT) before version 4.1.0.27 allows a... High Unreviewed
CVE-2018-3668 was published May 14, 2022
The OPC Foundation Local Discovery Server (LDS) before 1.03.367 is installed as a Windows Service... High Unreviewed
CVE-2017-11672 was published May 14, 2022
Unquoted service paths in Intel Quartus Prime Programmer and Tools in versions 15.1 - 18.0 allow... High Unreviewed
CVE-2018-3688 was published May 14, 2022
Unquoted service paths in Intel Quartus II in versions 11.0 - 15.0 allow a local attacker to... High Unreviewed
CVE-2018-3684 was published May 14, 2022
Unquoted service paths in Intel Quartus Prime in versions 15.1 - 18.0 allow a local attacker to... High Unreviewed
CVE-2018-3683 was published May 14, 2022
Unquoted service paths in Intel Quartus II Programmer and Tools in versions 11.0 - 15.0 allow a... High Unreviewed
CVE-2018-3687 was published May 14, 2022
Dell WMS versions 1.1 and prior are impacted by multiple unquoted service path vulnerabilities.... High Unreviewed
CVE-2018-11063 was published May 14, 2022
An unquoted search path vulnerability in some pre-installed applications on Panasonic PC run on... High Unreviewed
CVE-2018-16183 was published May 14, 2022
Unquoted Windows search path vulnerability in NSClient++ before 0.4.1.73 allows non-privileged... High Unreviewed
CVE-2018-6384 was published May 14, 2022
An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility... High Unreviewed
CVE-2019-6149 was published May 14, 2022
WINMAGIC SecureDoc Disk Encryption software before 8.3 has an Unquoted Service Path vulnerability... High Unreviewed
CVE-2018-20341 was published May 14, 2022
In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of... High Unreviewed
CVE-2018-16098 was published May 14, 2022
Adobe Photoshop versions CC 2017 (18.0.1) and earlier, CC 2015.5.1 (17.0.1) and earlier have an... High Unreviewed
CVE-2017-3005 was published May 14, 2022
Panini Everest Engine 2.0.4 allows unprivileged users to create a file named Everest.exe in the ... High Unreviewed
CVE-2022-39959 was published Oct 8, 2022
An Unquoted Search Path or Element issue was discovered in Progea Movicon Version 11.5.1181 and... Moderate Unreviewed
CVE-2017-14019 was published May 13, 2022
An issue was discovered in Moxa MXview v2.8 and prior. The unquoted service path escalation... High Unreviewed
CVE-2017-14030 was published May 13, 2022
An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior.... High Unreviewed
CVE-2017-12730 was published May 13, 2022
The BIND installer on Windows uses an unquoted service path which can enable a local user to... High Unreviewed
CVE-2017-3141 was published May 13, 2022
Beijing Feishu Technology Co., Ltd Feishu v3.40.3 was discovered to contain an untrusted search... High Unreviewed
CVE-2021-3305 was published Oct 18, 2022
An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk... High Unreviewed
CVE-2018-10619 was published May 13, 2022
Unquoted windows search path (directory/path traversal) vulnerability in Crystal Reports Server,... Moderate Unreviewed
CVE-2018-2406 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database