GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,015

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,996 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An issue was discovered on Enphase Envoy R3.x and D4.x (and other current) devices. The... High Unreviewed

CVE-2020-25755 was published May 24, 2022

If exploited, this command injection vulnerability could allow remote attackers to run arbitrary... High Unreviewed

CVE-2021-28811 was published May 24, 2022

Sharp NEC Displays (UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300... Critical Unreviewed

CVE-2021-20698 was published May 24, 2022

Sharp NEC Displays (UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300... Critical Unreviewed

CVE-2021-20699 was published May 24, 2022

A command injection vulnerability has been reported to affect certain versions of Video Station.... High Unreviewed

CVE-2021-28812 was published May 24, 2022

The open_generic_xdg_mime function in xdg-open in xdg-utils 1.1.0 rc1 in Debian, when using dash,... High Unreviewed

CVE-2015-1877 was published May 24, 2022

A shell injection flaw was found in pglogical in versions before 2.3.4 and before 3.6.26. An... High Unreviewed

CVE-2021-3515 was published May 24, 2022

A vulnerability has been discovered in BigTree CMS 4.4.10 and earlier which allows an... High Unreviewed

CVE-2020-26670 was published May 24, 2022

A command injection vulnerability exists in Pulse Connect Secure before 9.1R11.4 allows a remote... High Unreviewed

CVE-2021-22899 was published May 24, 2022

In Versa Director, the command injection is an attack in which the goal is execution of arbitrary... Critical Unreviewed

CVE-2019-25029 was published May 24, 2022

Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation or Code... Critical Unreviewed

CVE-2020-28901 was published May 24, 2022

Command Injection in Nagios Fusion 4.1.8 and earlier allows for Privilege Escalation to nagios. Critical Unreviewed

CVE-2020-28908 was published May 24, 2022

Command Injection in Nagios Fusion 4.1.8 and earlier allows Privilege Escalation from apache to... Critical Unreviewed

CVE-2020-28902 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1551 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1552 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1554 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1550 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1548 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1549 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1547 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1553 was published May 24, 2022

Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote... High Unreviewed

CVE-2021-1560 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed

CVE-2021-1555 was published May 24, 2022

In the pg_partman (aka PG Partition Manager) extension before 4.5.1 for PostgreSQL, arbitrary... Critical Unreviewed

CVE-2021-33204 was published May 24, 2022

In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when... Critical Unreviewed

CVE-2020-20951 was published May 24, 2022

Previous 1…80…120 Next

Previous 1 2 … 78 79 80 81 82 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,996 advisories