Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,830
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

181 advisories

Loading
FreeSSHd 1.3.1 version is vulnerable to an Unquoted Path Service allowing local users to launch... High Unreviewed
CVE-2017-1000475 was published May 13, 2022
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender... Moderate Unreviewed
CVE-2015-4173 was published May 13, 2022
Net Monitor for Employees Pro through 5.3.4 has an unquoted service path, which allows a Security... High Unreviewed
CVE-2017-7180 was published May 13, 2022
An Unquoted Search Path or Element issue was discovered in Automated Logic Corporation (ALC) ALC... High Unreviewed
CVE-2017-9644 was published May 13, 2022
In Philips' IntelliSpace Cardiovascular (ISCV) products (ISCV Version 3.1 or prior and Xcelera... Moderate Unreviewed
CVE-2018-14789 was published Apr 30, 2022
In ControlUp Real-Time Agent before 8.6, an unquoted path can result in privilege escalation. An... High Unreviewed
CVE-2022-27905 was published Apr 28, 2022
Ivanti DSM Remote <= 6.3.1.1862 is vulnerable to an unquoted service path allowing local users to... High Unreviewed
CVE-2022-27088 was published Apr 12, 2022
In Fujitsu PlugFree Network <= 7.3.0.3, an Unquoted service path in PFNService.exe software... High Unreviewed
CVE-2022-27089 was published Apr 12, 2022
There is an unquoted service path in Sherpa Connector Service (SherpaConnectorService.exe) 2020.2... High Unreviewed
CVE-2022-23909 was published Apr 6, 2022
An Unquoted Service Path vulnerability exists in bVPN 2.5.1 via a specially crafted file in the... High Unreviewed
CVE-2021-43457 was published Apr 5, 2022
An Unquoted Service Path vulnerablility exists in Rumble Mail Server 0.51.3135 via via a... High Unreviewed
CVE-2021-43456 was published Apr 5, 2022
An Unquoted Service Path vulnerability exits in Vembu BDR 4.2.0.1 via a specially crafted file in... High Unreviewed
CVE-2021-43458 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in FreeLAN 2.2 via a specially crafted file in the... High Unreviewed
CVE-2021-43455 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in System Explorer 7.0.0 via via a specially... High Unreviewed
CVE-2021-43460 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in AnyTXT Searcher 1.2.394 via a specially crafted... High Unreviewed
CVE-2021-43454 was published Apr 5, 2022
An Unquoted Service Path vulnerability exists in Ext2Fsd v0.68 via a specially crafted file in... High Unreviewed
CVE-2021-43463 was published Apr 5, 2022
Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute... Moderate Unreviewed
CVE-2022-27965 was published Apr 2, 2022
BitComet Service for Windows before version 1.8.6 contains an unquoted service path vulnerability... High Unreviewed
CVE-2022-27050 was published Apr 2, 2022
Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to... Moderate Unreviewed
CVE-2022-27966 was published Apr 2, 2022
Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to... Moderate Unreviewed
CVE-2022-27964 was published Apr 2, 2022
Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute... Moderate Unreviewed
CVE-2022-27963 was published Apr 2, 2022
FreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows... High Unreviewed
CVE-2022-27052 was published Apr 2, 2022
Rapid7 Insight Agent versions 3.1.2.38 and earlier suffer from a privilege escalation... High Unreviewed
CVE-2022-0237 was published Mar 19, 2022
Remote Desktop Commander Suite Agent before v4.8 contains an unquoted service path which allows... High Unreviewed
CVE-2022-25031 was published Mar 4, 2022
Wordline HIDCCEMonitorSVC before v5.2.4.3 contains an unquoted service path which allows... High Unreviewed
CVE-2021-45819 was published Mar 4, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database