Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,778
Erlang
36
GitHub Actions
29
Go
2,336
Maven
5,000+
npm
3,969
NuGet
713
pip
3,767
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

512 advisories

Loading
Untrusted Search Path vulnerability in Apache Tomcat installer for Windows. During installation,... High Unreviewed
CVE-2025-49124 was published Jun 16, 2025
A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT... High Unreviewed
CVE-2025-5335 was published Jun 10, 2025
A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16.... High Unreviewed
CVE-2025-5180 was published May 26, 2025
Yandex Telemost for Desktop before 2.7.0 has a DLL Hijacking Vulnerability because an untrusted... High Unreviewed
CVE-2024-12168 was published Jun 2, 2025
An untrusted search path vulnerability was reported in Lenovo PC Manager that could allow a local... High Unreviewed
CVE-2025-2501 was published May 30, 2025
A vulnerability has been found in Sangfor 零信任访问控制系统 aTrust 2.3.10.60 and classified as critical.... High Unreviewed
CVE-2025-5129 was published May 24, 2025
A vulnerability was found in MTSoftware C-Lodop 6.6.1.1. It has been rated as critical. This... High Unreviewed
CVE-2025-4540 was published May 11, 2025
Broadcom Automic Automation Agent Unix versions < 24.3.0 HF4 and < 21.0.13 HF1 allow low... High Unreviewed
CVE-2025-4971 was published May 20, 2025
Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to... Critical Unreviewed
CVE-2025-4802 was published May 16, 2025
A vulnerability classified as critical was found in CBEWIN Anytxt Searcher 1.3.1128.0. This... High Unreviewed
CVE-2025-4769 was published May 16, 2025
Beijing Feishu Technology Co., Ltd Feishu v3.40.3 was discovered to contain an untrusted search... High Unreviewed
CVE-2021-3305 was published Oct 18, 2022
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This... High Unreviewed
CVE-2025-4539 was published May 11, 2025
A vulnerability classified as critical has been found in Shanghai Bairui Information Technology... High Unreviewed
CVE-2025-4532 was published May 11, 2025
A vulnerability, which was classified as critical, has been found in Discord 1.0.9188 on Windows.... High Unreviewed
CVE-2025-4525 was published May 11, 2025
A vulnerability was found in Patch My PC Home Updater up to 5.1.3.0. It has been rated as... High Unreviewed
CVE-2025-4455 was published May 9, 2025
Untrusted search path vulnerability in the installer of Content Transfer (for Windows) Ver.1.3... High Unreviewed
CVE-2022-41796 was published Oct 24, 2022
Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking)... High Unreviewed
CVE-2019-8062 was published May 24, 2022
Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier... Moderate Unreviewed
CVE-2020-9672 was published May 24, 2022
Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier... Moderate Unreviewed
CVE-2020-9673 was published May 24, 2022
A vulnerability was found in Mechrevo Control Console 1.0.2.70. It has been rated as critical.... High Unreviewed
CVE-2025-4272 was published May 5, 2025
The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges. Critical Unreviewed
CVE-2024-58250 was published Apr 22, 2025
A malicious DLL preload attack possible on NwSapSetup and Installation self-extracting program... High Unreviewed
CVE-2017-16690 was published May 14, 2022
Untrusted search path vulnerability in BOOK WALKER for Windows Ver.1.2.9 and earlier allows an... High Unreviewed
CVE-2017-10887 was published May 17, 2022
Untrusted search path vulnerability in Installer of Flets Easy Setup Tool Ver1.2.0 and earlier... High Unreviewed
CVE-2017-10825 was published May 17, 2022
A vulnerability in the Cisco FindIT Network Discovery Utility could allow an authenticated, local... High Unreviewed
CVE-2017-12252 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database