GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,824

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,992 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A command injection vulnerability has been reported to affect certain versions of Video Station.... High Unreviewed

CVE-2021-28812 was published May 24, 2022

The open_generic_xdg_mime function in xdg-open in xdg-utils 1.1.0 rc1 in Debian, when using dash,... High Unreviewed

CVE-2015-1877 was published May 24, 2022

A shell injection flaw was found in pglogical in versions before 2.3.4 and before 3.6.26. An... High Unreviewed

CVE-2021-3515 was published May 24, 2022

A vulnerability has been discovered in BigTree CMS 4.4.10 and earlier which allows an... High Unreviewed

CVE-2020-26670 was published May 24, 2022

A command injection vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote... High Unreviewed

CVE-2021-22899 was published May 24, 2022

In Versa Director, the command injection is an attack in which the goal is execution of arbitrary... Critical Unreviewed

CVE-2019-25029 was published May 24, 2022

Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code... Critical Unreviewed

CVE-2020-28901 was published May 24, 2022

Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to nagios. Critical Unreviewed

CVE-2020-28908 was published May 24, 2022

Command Injection in Nagios Fusion 4.1.8 and earlier allows Privilege Escalation from apache to... Critical Unreviewed

CVE-2020-28902 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1551 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1552 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1554 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1550 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1548 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1549 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1547 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1553 was published May 24, 2022

Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote... High Unreviewed

CVE-2021-1560 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1555 was published May 24, 2022

In the pg_partman (aka PG Partition Manager) extension before 4.5.1 for PostgreSQL, arbitrary... Critical Unreviewed

CVE-2021-33204 was published May 24, 2022

In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when... Critical Unreviewed

CVE-2020-20951 was published May 24, 2022

The unprivileged user portal part of CentOS Web Panel is affected by a Command Injection... Critical Unreviewed

CVE-2021-31324 was published May 24, 2022

The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to... High Unreviewed

CVE-2020-12967 was published May 24, 2022

In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not... High Unreviewed

CVE-2021-26311 was published May 24, 2022

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability High Unreviewed

CVE-2021-28455 was published May 24, 2022

Previous 1…80…120 Next

Previous 1 2 … 78 79 80 81 82 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,992 advisories