Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,996 advisories

Loading
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43162 was published May 5, 2022
There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15... Critical Unreviewed
CVE-2022-28557 was published May 5, 2022
An issue was discovered in soap.cgi?service=WANIPConn1 on D-Link DIR-845 before v1.02b03, DIR-600... Critical Unreviewed
CVE-2013-7471 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... Critical Unreviewed
CVE-2021-43163 was published May 5, 2022
OS Command Injection in git-promise High
CVE-2022-24376 was published for git-promise (npm) Jun 11, 2022
lirantal
Credited to lirantal
D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr... Critical Unreviewed
CVE-2022-28571 was published May 3, 2022
D-Link DIR-823-Pro v1.0.2 was discovered to contain a command injection vulnerability in the... Critical Unreviewed
CVE-2022-28573 was published May 3, 2022
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in ... High Unreviewed
CVE-2022-28572 was published May 3, 2022
TP-Link Tapo C200 IP camera, on its 1.1.15 firmware version and below, is affected by an... Critical Unreviewed
CVE-2021-4045 was published Mar 11, 2022
Command injection vulnerability was discovered in Netgear R6200 v2 firmware through R6200v2-V1.0... High Unreviewed
CVE-2022-30079 was published Sep 9, 2022
A command injection vulnerability has been reported to affect certain versions of Video Station.... High Unreviewed
CVE-2021-28812 was published May 24, 2022
FusionPBX 5.0.1 was discovered to contain a command injection vulnerability via /fax/fax_send.php. Critical Unreviewed
CVE-2022-35153 was published Aug 19, 2022
Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to authenticated... High Unreviewed
CVE-2022-40770 was published Nov 23, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36482 was published Aug 26, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36485 was published Aug 26, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36481 was published Aug 26, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36479 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37079 was published Aug 26, 2022
Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below was discovered to... High Unreviewed
CVE-2022-36534 was published Sep 17, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37076 was published Aug 26, 2022
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection... High Unreviewed
CVE-2022-36461 was published Aug 26, 2022
TOTOLink A720R V4.1.5cu.532_B20210610 was discovered to contain a command injection vulnerability... High Unreviewed
CVE-2022-36456 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37083 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37082 was published Aug 26, 2022
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36487 was published Aug 26, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database