GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,025

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,996 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

In ProLink PRC2402M V1.0.18 and older, the set_TR069 function in the adm.cgi binary, accessible... Critical Unreviewed

CVE-2021-36705 was published May 24, 2022

In ProLink PRC2402M V1.0.18 and older, the set_sys_cmd function in the adm.cgi binary, accessible... Critical Unreviewed

CVE-2021-36706 was published May 24, 2022

In ProLink PRC2402M V1.0.18 and older, the set_ledonoff function in the adm.cgi binary,... Critical Unreviewed

CVE-2021-36707 was published May 24, 2022

The unofficial vscode-phpmd (aka PHP Mess Detector) extension before 1.3.0 for Visual Studio Code... Critical Unreviewed

CVE-2021-30124 was published May 24, 2022

A remote execution of arbitrary commands vulnerability was discovered in Aruba CX 6200F Switch... High Unreviewed

CVE-2021-29143 was published May 24, 2022

An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2... Critical Unreviewed

CVE-2020-21937 was published May 24, 2022

A command injection vulnerability in HNAP1/GetNetworkTomographySettings of Motorola CX2 router CX... Critical Unreviewed

CVE-2020-21935 was published May 24, 2022

An instance of improper neutralization of special elements in the sniffer module of FortiSandbox... High Unreviewed

CVE-2021-22125 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-34610 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-34611 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... Moderate Unreviewed

CVE-2021-34614 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... Moderate Unreviewed

CVE-2021-34616 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... Moderate Unreviewed

CVE-2021-34615 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... Moderate Unreviewed

CVE-2021-34613 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... Moderate Unreviewed

CVE-2021-34612 was published May 24, 2022

Command injection vulnerability in QSAN XEVO, SANOS allows remote unauthenticated attackers to... Critical Unreviewed

CVE-2021-32529 was published May 24, 2022

Monstra CMS 3.0.4 allows attackers to execute arbitrary code via a crafted payload entered into... High Unreviewed

CVE-2020-23219 was published May 24, 2022

A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated... Critical Unreviewed

CVE-2021-31838 was published May 24, 2022

The submission service in Dovecot before 2.3.15 allows STARTTLS command injection in lib-smtp.... Moderate Unreviewed

CVE-2021-33515 was published May 24, 2022

Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command... High Unreviewed

CVE-2021-35049 was published May 24, 2022

Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of... High Unreviewed

CVE-2021-29703 was published May 24, 2022

An issue was found in the Evernote client for Windows 10, 7, and 2008 in the protocol handler.... High Unreviewed

CVE-2020-17759 was published May 24, 2022

In IBOS 4.5.4 Open, the database backup has Command Injection Vulnerability. High Unreviewed

CVE-2020-21785 was published May 24, 2022

Improper neutralization of special elements used in a command ('Command Injection') vulnerability... High Unreviewed

CVE-2021-34809 was published May 24, 2022

phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize... High Unreviewed

CVE-2020-22201 was published May 24, 2022

Previous 1…79…120 Next

Previous 1 2 … 77 78 79 80 81 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,996 advisories