Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
45
Go
3,196
Maven
5,000+
npm
5,000+
NuGet
864
pip
4,483
Pub
12
RubyGems
992
Rust
1,186
Swift
51
Unreviewed advisories
All unreviewed
5,000+

384 advisories

Loading
VIVE Runtime Service 1.0.0.4 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2022-50918 was published Jan 14, 2026
Clevo HotKey Clipboard 2.1.0.6 contains an unquoted service path vulnerability in the HKClipSvc... High Unreviewed
CVE-2023-53984 was published Jan 14, 2026
Wondershare MobileTrans 3.5.9 contains an unquoted service path vulnerability in the... High Unreviewed
CVE-2022-50903 was published Jan 14, 2026
Wondershare Dr.Fone 12.0.18 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2022-50900 was published Jan 14, 2026
Wondershare Dr.Fone 11.4.9 contains an unquoted service path vulnerability in the DFWSIDService... High Unreviewed
CVE-2022-50901 was published Jan 14, 2026
Wondershare UBackit 2.0.5 contains an unquoted service path vulnerability that allows local users... High Unreviewed
CVE-2022-50904 was published Jan 14, 2026
Splashtop 8.71.12001.0 contains an unquoted service path vulnerability in the Splashtop Software... High Unreviewed
CVE-2022-50693 was published Jan 14, 2026
devolo dLAN Cockpit 4.3.1 contains an unquoted service path vulnerability in the ... High Unreviewed
CVE-2019-25231 was published Jan 8, 2026
Selea CarPlateServer 4.0.1.6 contains an unquoted service path vulnerability in the Windows... High Unreviewed
CVE-2020-36903 was published Dec 31, 2025
Tosibox Key Service 3.3.0 contains an unquoted service path vulnerability that allows local non... High Unreviewed
CVE-2024-58315 was published Dec 31, 2025
Improper quotation in search paths in the Eaton UPS Companion software installer could lead to... Moderate Unreviewed
CVE-2025-59888 was published Dec 26, 2025
Epic Games Easy Anti-Cheat 4.0 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2021-47739 was published Dec 23, 2025
Cobian Backup Gravity 11.2.0.582 contains an unquoted service path vulnerability that allows... High Unreviewed
CVE-2022-50688 was published Dec 23, 2025
SOUND4 Server Service 4.1.102 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2023-53965 was published Dec 23, 2025
Unquoted Search Path or Element vulnerability in NetBT Consulting Services Inc. E-Fatura allows... High Unreviewed
CVE-2025-14018 was published Dec 22, 2025
Arcsoft PhotoStudio 6.0.0.172 contains an unquoted service path vulnerability in the ArcSoft... High Unreviewed
CVE-2023-53946 was published Dec 19, 2025
ActFax 10.10 contains an unquoted service path vulnerability that allows local attackers to... High Unreviewed
CVE-2023-53954 was published Dec 19, 2025
OCS Inventory NG 2.3.0.0 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2023-53947 was published Dec 19, 2025
USB Flash Drives Control 4.1.0.0 contains an unquoted service path vulnerability in its service... High Unreviewed
CVE-2023-53912 was published Dec 18, 2025
AnyDesk 7.0.15 and 9.0.1 contains an unquoted service path vulnerability that allows local non... Moderate Unreviewed
CVE-2025-34499 was published Dec 12, 2025
Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the... High Unreviewed
CVE-2024-58288 was published Dec 12, 2025
Clone for Windows provided by ELECOM CO.,LTD. registers a Windows service with an unquoted file... High Unreviewed
CVE-2025-66271 was published Dec 9, 2025
FULLBACK Manager Pro provided by GS Yuasa International Ltd. registers two Windows services with... High Unreviewed
CVE-2025-66461 was published Dec 8, 2025
Flexsense DiskBoss 11.7.28 allows unauthenticated attackers to elevate their privileges using any... High Unreviewed
CVE-2020-36879 was published Dec 5, 2025
VeeVPN 1.6.1 contains an unquoted service path vulnerability in the VeePNService that allows... High Unreviewed
CVE-2025-66575 was published Dec 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database