GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,002 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Mesa Labs AmegaView Versions 3.0 and prior has a command injection vulnerability that can be... High Unreviewed

CVE-2021-27449 was published Dec 22, 2021

Mesa Labs AmegaView version 3.0 is vulnerable to a command injection, which may allow an attacker... Critical Unreviewed

CVE-2021-27447 was published Dec 22, 2021

A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... Critical Unreviewed

CVE-2022-23663 was published May 17, 2022

IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to inject commands into... Moderate Unreviewed

CVE-2017-1352 was published May 17, 2022

AppleThunderboltEDMService in Apple OS X before 10.10.4 allows local users to gain privileges or... High Unreviewed

CVE-2015-3678 was published May 17, 2022

Spotlight in Apple OS X before 10.10.4 allows attackers to execute arbitrary commands via a... Moderate Unreviewed

CVE-2015-3716 was published May 17, 2022

TOTOLINK NR1800X V9.1.0u.6279_B20210910 was discovered to contain a command injection... Critical Unreviewed

CVE-2022-41518 was published Oct 6, 2022

Proxy command injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions... High Unreviewed

CVE-2017-14081 was published May 17, 2022

Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0013 allows local users to... High Unreviewed

CVE-2015-6971 was published May 17, 2022

scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell... High Unreviewed

CVE-2015-5704 was published May 17, 2022

The login page of the server on Huawei FusionServer rack servers RH2288 V3 with software before... Critical Unreviewed

CVE-2015-7841 was published May 17, 2022

Module::Signature before 0.74 allows remote attackers to execute arbitrary shell commands via a... High Unreviewed

CVE-2015-3408 was published May 17, 2022

QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8... Critical Unreviewed

CVE-2017-13069 was published May 17, 2022

Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute... Critical Unreviewed

CVE-2013-6924 was published May 17, 2022

In Config Manager, there is a possible command injection due to improper input validation. This... High Unreviewed

CVE-2022-32664 was published Jan 3, 2023

The User Post Gallery - UPG plugin for WordPress is vulnerable to authorization bypass which... Critical Unreviewed

CVE-2023-0039 was published Jan 3, 2023

In Boa, there is a possible command injection due to improper input validation. This could lead... Critical Unreviewed

CVE-2022-32665 was published Jan 3, 2023

The Net::Ping::External extension through 0.15 for Perl does not properly sanitize arguments (e.g... Critical Unreviewed

CVE-2008-7319 was published May 17, 2022

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed

CVE-2017-8132 was published May 17, 2022

Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection... High Unreviewed

CVE-2017-8133 was published May 17, 2022

The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier... High Unreviewed

CVE-2017-2692 was published May 17, 2022

FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection... High Unreviewed

CVE-2017-2719 was published May 17, 2022

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed

CVE-2017-8134 was published May 17, 2022

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed

CVE-2017-8131 was published May 17, 2022

QNAP has already patched this vulnerability. This security concern allows a remote attacker to... Critical Unreviewed

CVE-2017-13071 was published May 17, 2022

Previous 1…85…121 Next

Previous 1 2 … 83 84 85 86 87 … 120 121 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,002 advisories