Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to... High Unreviewed
CVE-2015-1949 was published May 17, 2022
The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote... High Unreviewed
CVE-2015-2265 was published May 17, 2022
The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to... High Unreviewed
CVE-2015-1986 was published May 17, 2022
The get_rpm_nvr_by_file_path_temporary function in util.py in setroubleshoot before 3.2.22 allows... High Unreviewed
CVE-2015-1815 was published May 17, 2022
The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote... High Unreviewed
CVE-2015-2051 was published May 17, 2022
The management console on the Symantec Web Gateway (SWG) appliance before 5.2.2 allows remote... Moderate Unreviewed
CVE-2014-7285 was published May 17, 2022
Bugzilla before 4.0.16, 4.1.x and 4.2.x before 4.2.12, 4.3.x and 4.4.x before 4.4.7, and 5.x... Moderate Unreviewed
CVE-2014-8630 was published May 17, 2022
Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11... Critical Unreviewed
CVE-2016-10107 was published May 17, 2022
Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11... Critical Unreviewed
CVE-2016-10108 was published May 17, 2022
The Parental Control panel in Genexis devices with DRGOS before 1.14.1 allows remote... High Unreviewed
CVE-2015-3441 was published May 17, 2022
IBM Tivoli Endpoint Manager could allow a user under special circumstances to inject commands... High Unreviewed
CVE-2016-0396 was published May 17, 2022
An issue was discovered on SendQuick Entera and Avera devices before 2HF16. Multiple Command... Critical Unreviewed
CVE-2016-10098 was published May 17, 2022
EMC RecoverPoint versions before 4.4.1.1 and EMC RecoverPoint for Virtual Machines versions... High Unreviewed
CVE-2016-6649 was published May 17, 2022
The Sophos Web Appliance (version 4.2.1.3) is vulnerable to two Remote Command Injection... High Unreviewed
CVE-2016-9553 was published May 17, 2022
The Sophos Web Appliance Remote / Secure Web Gateway server (version 4.2.1.3) is vulnerable to a... High Unreviewed
CVE-2016-9554 was published May 17, 2022
An issue was discovered in Tesla Motors Model S automobile, all firmware versions before version... Moderate Unreviewed
CVE-2016-9337 was published May 17, 2022
A command-injection vulnerability exists in a web application on a custom-built GoAhead web... High Unreviewed
CVE-2017-5675 was published May 17, 2022
Command injection vulnerability in Junos Space before 15.2R2 allows attackers to execute... High Unreviewed
CVE-2016-4929 was published May 17, 2022
Unquoted executable path vulnerability in Client Management and Gateway components in McAfee (now... High Unreviewed
CVE-2015-8988 was published May 17, 2022
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's configuration utilities... High Unreviewed
CVE-2017-6183 was published May 17, 2022
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible... Moderate Unreviewed
CVE-2017-6184 was published May 17, 2022
Snoopy allows remote attackers to execute arbitrary commands. Critical Unreviewed
CVE-2014-5008 was published May 17, 2022
The _httpsrequest function in Snoopy allows remote attackers to execute arbitrary commands. NOTE... Critical Unreviewed
CVE-2008-7313 was published May 17, 2022
Huawei OceanStor 5600 V3 with V300R003C00C10 and earlier versions allows attackers with... High Unreviewed
CVE-2016-8801 was published May 17, 2022
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)... Critical Unreviewed
CVE-2016-10312 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database