Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,819
Erlang
36
GitHub Actions
32
Go
2,410
Maven
5,000+
npm
4,046
NuGet
723
pip
3,842
Pub
12
RubyGems
933
Rust
1,003
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

576 advisories

Loading
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-0712 was published Jul 30, 2025
An uncontrolled search path element vulnerability can lead to local privilege Escalation (LPE)... High Unreviewed
CVE-2025-25011 was published Jul 30, 2025
A DLL injection vulnerability exists in Commvault for Windows 11.20.0, 11.28.0, 11.32.0, 11.34.0,... High Unreviewed
CVE-2024-13976 was published Jul 25, 2025
A DLL hijacking vulnerability was reported in the Motorola Software Fix (Rescue and Smart... High Unreviewed
CVE-2025-1700 was published Jul 17, 2025
A local privilege escalation vulnerability in the Intercept X for Windows installer prior version... High Unreviewed
CVE-2025-7472 was published Jul 17, 2025
PSEvents.exe in multiple Panda Security products runs hourly with SYSTEM privileges and loads DLL... High Unreviewed
CVE-2025-34109 was published Jul 15, 2025
A vulnerability was found in Hainan ToDesk 4.7.6.3. It has been declared as critical. This... High Unreviewed
CVE-2025-4539 was published May 11, 2025
IBM i 7.2, 7.3, 7.4, and 7.5 could allow a user to gain elevated privileges due to an unqualified... High Unreviewed
CVE-2025-36004 was published Jun 26, 2025
An uncontrolled search path vulnerability in the Trend Micro Apex One Data Loss Prevention module... High Unreviewed
CVE-2025-49155 was published Jun 17, 2025
IBM i 7.2, 7.3, 7.4, 7.5, and 7.6 could allow a user to gain elevated privileges due to an... High Unreviewed
CVE-2025-33122 was published Jun 17, 2025
Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-5480 was published Jun 6, 2025
A vulnerability, which was classified as critical, has been found in Wondershare Filmora 14.5.16.... High Unreviewed
CVE-2025-5180 was published May 26, 2025
An issue was discovered in Regify Regipay Client for Windows version 4.5.1.0 allows DLL hijacking... High Unreviewed
CVE-2023-51711 was published Jan 24, 2024
An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x... High Unreviewed
CVE-2023-41117 was published Dec 12, 2023
DLL's are not digitally signed when loaded in ASPECT's configuration toolset exposing the... High Unreviewed
CVE-2024-13946 was published May 22, 2025
Uncontrolled Search Path Element vulnerability in Forcepoint FIE Endpoint allows Privilege... High Unreviewed
CVE-2025-2272 was published May 22, 2025
An issue in Blizzard Battle.net v2.40.0.15267 allows attackers to escalate privileges via placing... High Unreviewed
CVE-2025-27997 was published May 21, 2025
DLL hijacking in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7... High Unreviewed
CVE-2025-22458 was published Apr 8, 2025
A DLL hijacking vulnerability in the AMD Manageability API could allow an attacker to achieve... High Unreviewed
CVE-2023-31358 was published May 13, 2025
Substance3D - Modeler versions 1.21.0 and earlier are affected by an Uncontrolled Search Path... High Unreviewed
CVE-2025-43553 was published May 13, 2025
conda-forge openssl-feedstock before 066e83c (2024-05-20), on Microsoft Windows, configures... High Unreviewed
CVE-2025-35471 was published May 13, 2025
Untrusted search path vulnerability in the installer of Content Transfer (for Windows) Ver.1.3... High Unreviewed
CVE-2022-41796 was published Oct 24, 2022
Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking)... High Unreviewed
CVE-2019-8062 was published May 24, 2022
Uncontrolled search path in the Intel(R) GPA software before version 21.2 may allow an... High Unreviewed
CVE-2021-33101 was published Feb 11, 2022
CWE-427: Uncontrolled Search Path Element High Unreviewed
CVE-2025-23177 was published Apr 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database