Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,992 advisories

Loading
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to... High Unreviewed
CVE-2021-1299 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to... High Unreviewed
CVE-2021-1261 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to... High Unreviewed
CVE-2021-1263 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to... High Unreviewed
CVE-2021-1262 was published May 24, 2022
Multiple vulnerabilities in Cisco SD-WAN products could allow an authenticated attacker to... High Unreviewed
CVE-2021-1260 was published May 24, 2022
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an... Critical Unreviewed
CVE-2021-1142 was published May 24, 2022
IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who... High Unreviewed
CVE-2020-4983 was published May 24, 2022
IBM Security Guardium 10.6 and 11.2 could allow a local attacker to execute arbitrary commands on... High Unreviewed
CVE-2020-4688 was published May 24, 2022
There is command injection when ddns processes the hostname, which causes the administrator user... High Unreviewed
CVE-2020-14102 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1149 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1150 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1148 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1147 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1146 was published May 24, 2022
A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited,... High Unreviewed
CVE-2020-2508 was published May 24, 2022
The NDN-210 has a web administration panel which is made available over https. There is a command... High Unreviewed
CVE-2020-17503 was published May 24, 2022
Barco TransForm N before 3.8 allows Command Injection (issue 2 of 4). The NDN-210 has a web... High Unreviewed
CVE-2020-17502 was published May 24, 2022
The NDN-210 has a web administration panel which is made available over https. There is a command... High Unreviewed
CVE-2020-17504 was published May 24, 2022
Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 Pro before 3.8 allows... Critical Unreviewed
CVE-2020-17500 was published May 24, 2022
Foxit PDF ActiveX before 5.5.1 allows remote code execution via command injection because of the... High Unreviewed
CVE-2018-19418 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... High Unreviewed
CVE-2020-35798 was published May 24, 2022
NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an unauthenticated... Critical Unreviewed
CVE-2020-35797 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... Moderate Unreviewed
CVE-2020-35794 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... Moderate Unreviewed
CVE-2020-35793 was published May 24, 2022
NETGEAR NMS300 devices before 1.6.0.27 are affected by command injection by an authenticated user. High Unreviewed
CVE-2020-35789 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database