Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,820
Erlang
36
GitHub Actions
32
Go
2,412
Maven
5,000+
npm
4,050
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,004
Swift
38
Unreviewed advisories
All unreviewed
5,000+

816 advisories

Loading
There is a DLL hijacking vulnerability due to an uncontrolled search path that exists in NI... High Unreviewed
CVE-2025-2629 was published Apr 9, 2025
Improper access control in Visual Studio allows an authorized attacker to elevate privileges... High Unreviewed
CVE-2025-29802 was published Apr 8, 2025
DLL hijacking in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7... High Unreviewed
CVE-2025-22458 was published Apr 8, 2025
DLL Search Order Hijacking vulnerability potentially allowed an attacker with administrator... Moderate Unreviewed
CVE-2024-11859 was published Apr 7, 2025
Linux::Statm::Tiny for Perl before 0.0701 allows untrusted code from the current working... Moderate Unreviewed
CVE-2025-3051 was published Apr 1, 2025
Sub::HandlesVia for Perl before 0.050002 allows untrusted code from the current working directory... Moderate Unreviewed
CVE-2025-30673 was published Apr 1, 2025
Mite for Perl before 0.013000 generates code with the current working directory ('.') added to... Moderate Unreviewed
CVE-2025-30672 was published Apr 1, 2025
Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate... High Unreviewed
CVE-2025-24998 was published Mar 11, 2025
Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate... High Unreviewed
CVE-2025-25003 was published Mar 11, 2025
Uncontrolled search path element in Visual Studio Code allows an authorized attacker to elevate... High Unreviewed
CVE-2025-26631 was published Mar 11, 2025
Wondershare filmora 9.2.11 is affected by Trojan Dll hijacking leading to privilege escalation. High Unreviewed
CVE-2020-23438 was published Mar 4, 2025
An Uncontrolled Search Path Element vulnerability exists which could allow a malicious actor to... High Unreviewed
CVE-2024-10930 was published Mar 4, 2025
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user with the capability to compile or restore a... High Unreviewed
CVE-2024-55898 was published Feb 24, 2025
Trend Micro HouseCall for Home Networks version 5.3.1302 and below contains an uncontrolled... High Unreviewed
CVE-2022-28339 was published Feb 22, 2025
An attacker can gain application privileges in order to perform limited modification and/or read... Moderate Unreviewed
CVE-2025-1223 was published Feb 20, 2025
Insecure Loading of Dynamic Link Libraries have been discovered in USB-CONVERTERCABLE DRIVER,... High Unreviewed
CVE-2024-57963 was published Feb 18, 2025
Insecure Loading of Dynamic Link Libraries have been discovered in HVAC Energy Saving Program,... High Unreviewed
CVE-2024-57964 was published Feb 18, 2025
Uncontrolled search path for some Intel(R) Quartus(R) Prime Software before version 23.1.1 Patch... Moderate Unreviewed
CVE-2024-42405 was published Feb 13, 2025
Uncontrolled search path element in some BIOS and System Firmware Update Package for Intel(R)... Moderate Unreviewed
CVE-2024-42492 was published Feb 13, 2025
Uncontrolled search path for the Intel(R) RealSense D400 Series Universal Windows Platform (UWP)... Moderate Unreviewed
CVE-2024-47006 was published Feb 13, 2025
Uncontrolled search path for some Intel(R) Advisor software before version 2024.2 may allow an... Moderate Unreviewed
CVE-2024-39284 was published Feb 13, 2025
Uncontrolled search path for the FPGA Support Package for the Intel(R) oneAPI DPC++/C++ Compiler... Moderate Unreviewed
CVE-2024-39365 was published Feb 13, 2025
Uncontrolled search path for the Intel(R) XTU software for Windows before version 7.14.2.14 may... Moderate Unreviewed
CVE-2024-39372 was published Feb 13, 2025
Uncontrolled search path for some EPCT software before version 1.42.8.0 may allow an... Moderate Unreviewed
CVE-2024-39813 was published Feb 13, 2025
Uncontrolled search path for some Intel(R) QuickAssist Technology software before version 2.2.0... Moderate Unreviewed
CVE-2024-29223 was published Feb 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database