Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,278 advisories

Loading
An OS command injection vulnerability exists in the daretools binary functionality of InHand... High Unreviewed
CVE-2022-26042 was published May 13, 2022
An OS command injection vulnerability exists in the console factory functionality of InHand... High Unreviewed
CVE-2022-26007 was published May 13, 2022
An OS command injection vulnerability exists in the console infactory_wlan functionality of... High Unreviewed
CVE-2022-26075 was published May 13, 2022
An OS command injection vulnerability exists in the console infactory_port functionality of... High Unreviewed
CVE-2022-26420 was published May 13, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed
CVE-2022-27224 was published May 10, 2022
A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP... High Unreviewed
CVE-2013-1599 was published May 5, 2022
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken... High Unreviewed
CVE-2013-2024 was published May 5, 2022
An OS Command Injection vulnerability in the configuration parser of Eve-NG Professional through... High Unreviewed
CVE-2022-27903 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20799 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20801 was published May 5, 2022
MitraStar GPT-2541GNAC-N1 (HGU) 100VNZ0b33 devices allow remote authenticated users to obtain... High Unreviewed
CVE-2021-42165 was published May 4, 2022
Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java... High Unreviewed
CVE-2010-1423 was published May 2, 2022
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using... High Unreviewed
CVE-2010-1132 was published May 2, 2022
The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super... High Unreviewed
CVE-2010-0934 was published May 2, 2022
The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote... High Unreviewed
CVE-2010-0418 was published May 2, 2022
Accellion Secure File Transfer Appliance before 8_0_105 allows remote authenticated... High Unreviewed
CVE-2009-4644 was published May 2, 2022
Argument injection vulnerability in the traceroute function in Traceroute.php in the... High Unreviewed
CVE-2009-4025 was published May 2, 2022
changetrack 4.3 allows local users to execute arbitrary commands via CRLF sequences and shell... High Unreviewed
CVE-2009-3233 was published May 2, 2022
statuswml.cgi in Nagios before 3.1.1 allows remote attackers to execute arbitrary commands via... High Unreviewed
CVE-2009-2288 was published May 2, 2022
Worldweaver DX Studio Player 3.0.29.0, 3.0.22.0, 3.0.12.0, and probably other versions before 3.0... High Unreviewed
CVE-2009-2011 was published May 2, 2022
dig.php in GScripts.net DNS Tools allows remote attackers to execute arbitrary commands via shell... High Unreviewed
CVE-2009-1916 was published May 2, 2022
The system.openURL function in StoneTrip Ston3D StandalonePlayer (aka S3DPlayer StandAlone) 1.6.2... High Unreviewed
CVE-2009-1792 was published May 2, 2022
Indexed Search Engine for TYPO3 Command Execution via Metacharacter Injection High
CVE-2009-0258 was published for typo3/cms (Composer) May 2, 2022
general/login.php in phpCollab 2.5 rc3 and earlier allows remote attackers to execute arbitrary... High Unreviewed
CVE-2008-4304 was published May 2, 2022
The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted... High Unreviewed
CVE-2008-3074 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database