Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
44
GitHub Actions
43
Go
3,181
Maven
5,000+
npm
5,000+
NuGet
863
pip
4,474
Pub
12
RubyGems
991
Rust
1,185
Swift
51
Unreviewed advisories
All unreviewed
5,000+

384 advisories

Loading
Serviio PRO 1.8 contains an unquoted search path vulnerability in the Windows service that allows... High Unreviewed
CVE-2017-20218 was published Mar 16, 2026
MobaXterm versions prior to 26.1 contain an uncontrolled search path element vulnerability. The... High Unreviewed
CVE-2026-25866 was published Mar 9, 2026
UPS Multi-UPS Management Console (MUMC) version 01.06.0001 (A03) contains an Incorrect Default... High Unreviewed
CVE-2026-26034 was published Mar 5, 2026
UPS Multi-UPS Management Console (MUMC) version 01.06.0001 (A03) contains an Unquoted Search Path... High Unreviewed
CVE-2026-26033 was published Mar 5, 2026
OpenClaw: safeBins static default trusted dirs allow writable-dir binary hijack (`jq`) High
GHSA-5gj7-jf77-q2q2 was published for openclaw (npm) Mar 3, 2026
tdjackey Credited to tdjackey
An unquoted Windows service executable path vulnerability in IJ Scan Utility for Windows versions... High Unreviewed
CVE-2026-1585 was published Feb 27, 2026
Realtek IIS Codec Service 6.4.10041.133 contains an unquoted service path vulnerability that... High Unreviewed
CVE-2019-25345 was published Feb 12, 2026
WorkgroupMail 7.5.1 contains an unquoted service path vulnerability in its Windows service... High Unreviewed
CVE-2019-25307 was published Feb 11, 2026
BlackMoon FTP Server 3.1.2.1731 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2019-25306 was published Feb 11, 2026
ActiveFax Server 6.92 Build 0316 contains an unquoted service path vulnerability in the... High Unreviewed
CVE-2019-25310 was published Feb 11, 2026
Mikogo 5.2.2.150317 contains an unquoted service path vulnerability in the Mikogo-Service Windows... High Unreviewed
CVE-2019-25308 was published Feb 11, 2026
Zilab Remote Console Server 3.2.9 contains an unquoted service path vulnerability that allows... High Unreviewed
CVE-2019-25309 was published Feb 11, 2026
Products provided by Oki Electric Industry Co., Ltd. and its OEM products (Ricoh Co., Ltd.,... High Unreviewed
CVE-2026-24466 was published Feb 9, 2026
JumpStart 0.6.0.0 contains an unquoted service path vulnerability in the jswpbapi service running... High Unreviewed
CVE-2019-25305 was published Feb 6, 2026
Alps HID Monitor Service 8.1.0.10 contains an unquoted service path vulnerability that allows... High Unreviewed
CVE-2019-25292 was published Feb 6, 2026
Acer Launch Manager 6.1.7600.16385 contains an unquoted service path vulnerability in the... High Unreviewed
CVE-2019-25302 was published Feb 6, 2026
Wondershare Application Framework Service 2.4.3.231 contains an unquoted service path... High Unreviewed
CVE-2019-25266 was published Feb 6, 2026
SecurOS Enterprise 10.2 contains an unquoted service path vulnerability in the SecurosCtrlService... High Unreviewed
CVE-2019-25304 was published Feb 6, 2026
TexasSoft CyberPlanet 6.4.131 contains an unquoted service path vulnerability in the CCSrvProxy... High Unreviewed
CVE-2019-25272 was published Feb 5, 2026
Shrew Soft VPN Client 2.2.2 contains an unquoted service path vulnerability that allows local... High Unreviewed
CVE-2019-25283 was published Feb 5, 2026
Wing FTP Server 6.0.7 contains an unquoted service path vulnerability that allows local attackers... High Unreviewed
CVE-2019-25267 was published Feb 5, 2026
Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in... High Unreviewed
CVE-2019-25287 was published Feb 5, 2026
NETGATE Data Backup 3.0.620 contains an unquoted service path vulnerability in its NGDatBckpSrv... High Unreviewed
CVE-2019-25271 was published Feb 5, 2026
Easy-Hide-IP 5.0.0.3 contains an unquoted service path vulnerability in the EasyRedirect service... High Unreviewed
CVE-2019-25273 was published Feb 5, 2026
ProShow Producer 9.0.3797 contains an unquoted service path vulnerability in the ScsiAccess... High Unreviewed
CVE-2019-25274 was published Feb 5, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database