GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,032

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,996 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A command injection vulnerability in the web server of some Hikvision product. Due to the... Critical Unreviewed

CVE-2021-36260 was published May 24, 2022

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the... Critical Unreviewed

CVE-2019-6288 was published May 24, 2022

ManageEngine Desktop Central before build 10.0.683 allows Unauthenticated Remote Code Execution... Critical Unreviewed

CVE-2021-28960 was published May 24, 2022

setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands... High Unreviewed

CVE-2021-41383 was published May 24, 2022

There is command injection in the meshd program in the routing system, resulting in command... High Unreviewed

CVE-2020-14109 was published May 24, 2022

There is command injection in the addMeshNode interface of xqnetwork.lua, which leads to command... Critical Unreviewed

CVE-2020-14119 was published May 24, 2022

Command Injection in Jfinal CMS v4.7.1 and earlier allows remote attackers to execute arbitrary... High Unreviewed

CVE-2020-19151 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** A command-injection vulnerability in an authenticated Telnet... High Unreviewed

CVE-2021-37145 was published May 24, 2022

Command Injection in PPGo_Jobs v2.8.0 allows remote attackers to execute arbitrary code via the ... Critical Unreviewed

CVE-2020-26772 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37717 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37719 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37718 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba Operating System... High Unreviewed

CVE-2021-37724 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37720 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37721 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37722 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba Operating System... High Unreviewed

CVE-2021-37723 was published May 24, 2022

An issue in craigms/main.php of CraigMS 1.0 allows attackers to execute arbitrary commands via a... Critical Unreviewed

CVE-2020-18048 was published May 24, 2022

Magento is affected by an os command injection via the Data collection endpoint High

CVE-2021-36024 was published for magento/community-edition (Composer) May 24, 2022

Command Injection vulnerability in EmailWebPage API which can lead to a Remote Code Execution ... High Unreviewed

CVE-2021-35220 was published May 24, 2022

Several high privileged APIs on the Vizio P65-F1 6.0.31.4-2 and E50x-E1 10.0.31.4-2 Smart TVs do... Critical Unreviewed

CVE-2021-27944 was published May 24, 2022

opensysusers through 0.6 does not safely use eval on files in sysusers.d that may contain shell... Critical Unreviewed

CVE-2021-40084 was published May 24, 2022

Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy... High Unreviewed

CVE-2021-1580 was published May 24, 2022

A command-injection vulnerability in the Image Upload function of the NASCENT RemKon Device... Critical Unreviewed

CVE-2021-38611 was published May 24, 2022

An issue was discovered in D-Link DIR816_A1_FW101CNB04 750m11ac wireless router via the HTTP... Critical Unreviewed

CVE-2021-39510 was published May 24, 2022

Previous 1…77…120 Next

Previous 1 2 … 75 76 77 78 79 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,996 advisories