GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,819

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,992 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Critical Unreviewed

CVE-2021-29079 was published May 24, 2022

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Critical Unreviewed

CVE-2021-29078 was published May 24, 2022

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... High Unreviewed

CVE-2021-29070 was published May 24, 2022

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... Critical Unreviewed

CVE-2021-29071 was published May 24, 2022

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... High Unreviewed

CVE-2021-29072 was published May 24, 2022

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... High Unreviewed

CVE-2021-29069 was published May 24, 2022

applications/luci-app-ddns/luasrc/model/cbi/ddns/detail.lua in the DDNS package for OpenWrt 19.07... High Unreviewed

CVE-2021-28961 was published May 24, 2022

** DISPUTED ** MikroTik RouterOS 6.47.9 allows remote authenticated ftp users to create or... High Unreviewed

CVE-2021-27221 was published May 24, 2022

prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to... High Unreviewed

CVE-2021-28144 was published May 24, 2022

/jsonrpc on D-Link DIR-841 3.03 and 3.04 devices allows authenticated command injection via ping,... High Unreviewed

CVE-2021-28143 was published May 24, 2022

Maxum Rumpus 8.2.13 and 8.2.14 is affected by a command injection vulnerability. The web... High Unreviewed

CVE-2020-27575 was published May 24, 2022

A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave... Moderate Unreviewed

CVE-2021-26970 was published May 24, 2022

A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave... High Unreviewed

CVE-2021-26962 was published May 24, 2022

A remote code execution vulnerability was identified in GitHub Enterprise Server that could be... High Unreviewed

CVE-2020-10519 was published May 24, 2022

rakibtg Docker Dashboard before 2021-02-28 allows command injection in backend/utilities/terminal... Critical Unreviewed

CVE-2021-27886 was published May 24, 2022

SaltStack Salt command injection in the Salt-API when using the Salt-SSH client Critical

CVE-2021-3148 was published for salt (pip) May 24, 2022

SaltStack Salt command injection via a crafted process name High

CVE-2020-28243 was published for salt (pip) May 24, 2022

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-26683 was published May 24, 2022

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-26684 was published May 24, 2022

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-26679 was published May 24, 2022

A remote authenticated command Injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-26681 was published May 24, 2022

A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-26680 was published May 24, 2022

A command injection issue in dji_sys in DJI Mavic 2 Remote Controller before firmware version 01... High Unreviewed

CVE-2020-29664 was published May 24, 2022

The EFM ipTIME C200 IP Camera is affected by a Command Injection vulnerability in /login.cgi... High Unreviewed

CVE-2020-7848 was published May 24, 2022

Nagios XI 5.7.2 is affected by a remote code execution (RCE) vulnerability. An authenticated user... High Unreviewed

CVE-2020-24899 was published May 24, 2022

Previous 1…83…120 Next

Previous 1 2 … 81 82 83 84 85 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,992 advisories