Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,002 advisories

Loading
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36479 was published Aug 26, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36487 was published Aug 26, 2022
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection... High Unreviewed
CVE-2022-36458 was published Aug 26, 2022
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection... High Unreviewed
CVE-2022-36460 was published Aug 26, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36485 was published Aug 26, 2022
TOTOLink A720R V4.1.5cu.532_B20210610 was discovered to contain a command injection vulnerability... High Unreviewed
CVE-2022-36456 was published Aug 26, 2022
Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac... Critical Unreviewed
CVE-2022-37810 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37081 was published Aug 26, 2022
TOTOLink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a command injection... High Unreviewed
CVE-2022-36455 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37079 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37082 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37083 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37078 was published Aug 26, 2022
Improper token validation leading to code execution in Teleport High
CVE-2022-36633 was published for github.com/gravitational/teleport (Go) Aug 25, 2022
An authenticated mySCADA myPRO 8.26.0 user may be able to modify parameters to run commands... High Unreviewed
CVE-2022-2234 was published Aug 25, 2022
FusionPBX 5.0.1 was discovered to contain a command injection vulnerability via /fax/fax_send.php. Critical Unreviewed
CVE-2022-35153 was published Aug 19, 2022
@actions/core has Delimiter Injection Vulnerability in exportVariable Moderate
CVE-2022-35954 was published for @actions/core (npm) Aug 18, 2022
jupenur
Credited to jupenur
Tenda AC9 V15.03.2.21_cn is vulnerable to command injection via goform/SetSysTimeCfg. Critical Unreviewed
CVE-2022-36273 was published Aug 17, 2022
D-Link Go-RT-AC750 GORTAC750_revA_v101b03 & GO-RT-AC750_revB_FWv200b02 is vulnerable to command... Critical Unreviewed
CVE-2022-36523 was published Aug 16, 2022
A command injection vulnerability exists in /goform/exeCommand in Tenda W6 V1.0.0.9(4122), which... Critical Unreviewed
CVE-2022-35555 was published Aug 13, 2022
A vulnerability has been identified in Teamcenter V12.4 (All versions < V12.4.0.15), Teamcenter... Critical Unreviewed
CVE-2022-34660 was published Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters:... Critical Unreviewed
CVE-2022-35537 was published Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters:... Critical Unreviewed
CVE-2022-35538 was published Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters:... Critical Unreviewed
CVE-2022-35536 was published Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameter... Critical Unreviewed
CVE-2022-35534 was published Aug 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database