Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,263
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,996 advisories

Loading
TOTOLINK N350RT V9.3.5u.6139_B20201216 was discovered to contain a command injection... High Unreviewed
CVE-2022-36486 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37078 was published Aug 26, 2022
Tenda AC1206 V15.03.06.23 was discovered to contain a command injection vulnerability via the mac... Critical Unreviewed
CVE-2022-37810 was published Aug 26, 2022
TOTOLINK A7000R V9.1.0u.6115_B20201022 was discovered to contain a command injection... High Unreviewed
CVE-2022-37081 was published Aug 26, 2022
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection... High Unreviewed
CVE-2022-36459 was published Aug 26, 2022
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection... High Unreviewed
CVE-2022-36460 was published Aug 26, 2022
TOTOLINK A3700R V9.1.2u.6134_B20201202 was discovered to contain a command injection... High Unreviewed
CVE-2022-36458 was published Aug 26, 2022
The tinygltf library uses the C library function wordexp() to perform file path expansion on... High Unreviewed
CVE-2022-3008 was published Sep 6, 2022
IBM InfoSphere DataStage 11.7 is vulnerable to a command injection vulnerability due to improper... Critical Unreviewed
CVE-2022-40752 was published Nov 17, 2022
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed
CVE-2022-37425 was published Oct 28, 2022
An issue was discovered in ClusterLabs Hawk (aka HA Web Konsole) through 2.3.0-15. It ships the... High Unreviewed
CVE-2021-3020 was published Aug 27, 2022
D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Command injection via /goform/form2userconfig.cgi. High Unreviewed
CVE-2022-37123 was published Sep 1, 2022
D-Link DIR-816 A2_v1.10CNB04.img is vulnerable to Command Injection via /goform/SystemCommand.... High Unreviewed
CVE-2022-37129 was published Sep 1, 2022
Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain a command injection... Critical Unreviewed
CVE-2022-36556 was published Aug 30, 2022
Hytec Inter HWL-2511-SS v1.05 and below was discovered to contain a command injection... Critical Unreviewed
CVE-2022-36553 was published Aug 30, 2022
Seiko SkyBridge MB-A200 v01.00.04 and below was discovered to contain a command injection... Critical Unreviewed
CVE-2022-36559 was published Aug 30, 2022
npos-tesseract Command Injection vulnerability Critical
CVE-2020-28453 was published for npos-tesseract (npm) Aug 3, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35266 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35269 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35265 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35262 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35263 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35261 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35267 was published Oct 25, 2022
A denial of service vulnerability exists in the web_server hashFirst functionality of Robustel... High Unreviewed
CVE-2022-35271 was published Oct 25, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database