Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,002 advisories

Loading
VCM5010 with software versions earlier before V100R002C50SPC100 has a command injection... High Unreviewed
CVE-2017-2736 was published May 17, 2022
FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability. An authenticated,... High Unreviewed
CVE-2017-8197 was published May 17, 2022
FusionSphere OpenStack V100R006C00SPC102(NFV)has a command injection vulnerability. Due to lack... High Unreviewed
CVE-2017-8188 was published May 17, 2022
The FusionSphere OpenStack V100R006C00SPC102(NFV) has a command injection vulnerability. Due to... High Unreviewed
CVE-2017-8193 was published May 17, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... Moderate Unreviewed
CVE-2017-12339 was published May 17, 2022
A remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system... Critical Unreviewed
CVE-2021-42897 was published May 17, 2022
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed
CVE-2017-8135 was published May 14, 2022
The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before... Moderate Unreviewed
CVE-2014-4336 was published May 14, 2022
In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and 13.1.x... High Unreviewed
CVE-2022-41617 was published Oct 20, 2022
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS... High Unreviewed
CVE-2016-0324 was published May 14, 2022
Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as... High Unreviewed
CVE-2019-5446 was published May 24, 2022
A Remote Arbitrary Code Execution vulnerability in HPE Smart Storage Administrator version before... High Unreviewed
CVE-2016-8523 was published May 14, 2022
The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1... Critical Unreviewed
CVE-2016-2397 was published May 14, 2022
The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8... Critical Unreviewed
CVE-2016-2396 was published May 14, 2022
The web configuration interface of the TP-Link M7350 V3 with firmware version 190531 is affected... Critical Unreviewed
CVE-2022-37860 was published Sep 13, 2022
PowerCMS XMLRPC API provided by Alfasado Inc. contains a command injection vulnerability. Sending... Critical Unreviewed
CVE-2022-33941 was published Sep 9, 2022
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan... Critical Unreviewed
CVE-2014-6120 was published May 14, 2022
IBM Notes 8.5 and 9.0 could allow a local attacker to execute arbitrary commands by carefully... Moderate Unreviewed
CVE-2017-1720 was published May 14, 2022
The EZPZ One Click Backup (ezpz-one-click-backup) plugin 12.03.10 and earlier for WordPress... Critical Unreviewed
CVE-2014-3114 was published May 14, 2022
The WordPress Flash Uploader plugin before 3.1.3 for WordPress allows remote attackers to execute... Critical Unreviewed
CVE-2014-5014 was published May 14, 2022
Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to execute arbitrary... High Unreviewed
CVE-2014-9144 was published May 14, 2022
Synology Video Station before 1.5-0763 allows remote attackers to execute arbitrary shell... High Unreviewed
CVE-2015-6912 was published May 14, 2022
The help window in Epicor CRS Retail Store before 3.2.03.01.008 allows local users to execute... High Unreviewed
CVE-2015-2210 was published May 14, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed
CVE-2022-27224 was published May 10, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote... Critical Unreviewed
CVE-2016-9684 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database