Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,278 advisories

Loading
A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower... High Unreviewed
CVE-2017-6601 was published May 13, 2022
An issue was discovered in Trend Micro InterScan Messaging Security (Virtual Appliance) 9.1-1600.... High Unreviewed
CVE-2017-6398 was published May 13, 2022
dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote... High Unreviewed
CVE-2017-6334 was published May 13, 2022
Ruckus Wireless Zone Director Controller firmware releases ZD9.x, ZD10.0.0.x, ZD10.0.1.x (less... High Unreviewed
CVE-2017-6224 was published May 13, 2022
EyesOfNetwork ("EON") 5.0 and earlier allows remote authenticated users to execute arbitrary code... High Unreviewed
CVE-2017-6087 was published May 13, 2022
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent:... High Unreviewed
CVE-2017-3506 was published May 13, 2022
An exploitable code execution vulnerability exists in the trapper command functionality of Zabbix... High Unreviewed
CVE-2017-2824 was published May 13, 2022
TP-Link TL-WVR and TL-WAR devices allow remote authenticated users to execute arbitrary commands... High Unreviewed
CVE-2017-17758 was published May 13, 2022
TP-Link TL-WVR and TL-WAR devices allow remote authenticated users to execute arbitrary commands... High Unreviewed
CVE-2017-17757 was published May 13, 2022
TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute... High Unreviewed
CVE-2017-16960 was published May 13, 2022
On D-Link DCS-5009 devices with firmware 1.08.11 and earlier, DCS-5010 devices with firmware 1.14... High Unreviewed
CVE-2017-17020 was published May 13, 2022
TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute... High Unreviewed
CVE-2017-16957 was published May 13, 2022
TP-Link TL-WVR, TL-WAR, TL-ER, and TL-R devices allow remote authenticated users to execute... High Unreviewed
CVE-2017-16958 was published May 13, 2022
Command Injection vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05... High Unreviewed
CVE-2017-16923 was published May 13, 2022
Xplico before 1.2.1 allows remote authenticated users to execute arbitrary commands via shell... High Unreviewed
CVE-2017-16666 was published May 13, 2022
In manager.c in ss-manager in shadowsocks-libev 3.1.0, improper parsing allows command injection... High Unreviewed
CVE-2017-15924 was published May 13, 2022
DenyAll WAF before 6.4.1 allows unauthenticated remote command execution via TCP port 3001... High Unreviewed
CVE-2017-14705 was published May 13, 2022
T&W WIFI Repeater BE126 allows remote authenticated users to execute arbitrary code via shell... High Unreviewed
CVE-2017-13713 was published May 13, 2022
Command injection vulnerability in Trend Micro Smart Protection Server (Standalone) 3.1 and 3.2... High Unreviewed
CVE-2017-11395 was published May 13, 2022
The chroothole_client executable in UCOPIA Wireless Appliance before 5.1.8 allows remote... High Unreviewed
CVE-2017-11322 was published May 13, 2022
Command injection vulnerability in Document.php in Synology Office 2.2.0-1502 and 2.2.1-1506... High Unreviewed
CVE-2017-11150 was published May 13, 2022
fs-git command injection vulnerability High
CVE-2017-1000451 was published for fs-git (npm) May 13, 2022
ROOT version 6.9.03 and below is vulnerable to an authenticated shell metacharacter injection in... High Unreviewed
CVE-2017-1000203 was published May 13, 2022
Command injection in evince via filename when printing to PDF. This affects versions earlier than... High Unreviewed
CVE-2017-1000159 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed
CVE-2017-10953 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database