GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,378

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,989 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows... Moderate Unreviewed

CVE-2012-4086 was published May 17, 2022

Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2... High Unreviewed

CVE-2013-2810 was published May 17, 2022

Snoopy allows remote attackers to execute arbitrary commands. NOTE: this vulnerability exists... Critical Unreviewed

CVE-2014-5009 was published May 17, 2022

canto_curses/guibase.py in Canto Curses before 0.9.0 allows remote feed servers to execute... High Unreviewed

CVE-2013-7416 was published May 17, 2022

run-mailcap in the Debian mime-support package before 3.52-1+deb7u1 allows context-dependent... High Unreviewed

CVE-2014-7209 was published May 17, 2022

General Electric (GE) Industrial Solutions UPS SNMP/Web Adapter devices with firmware before 4.8... High Unreviewed

CVE-2016-0861 was published May 17, 2022

IBM Maximo Asset Management 7.5 and 7.6 could allow an authenticated user to inject commands into... Moderate Unreviewed

CVE-2017-1352 was published May 17, 2022

AppleThunderboltEDMService in Apple OS X before 10.10.4 allows local users to gain privileges or... High Unreviewed

CVE-2015-3678 was published May 17, 2022

Spotlight in Apple OS X before 10.10.4 allows attackers to execute arbitrary commands via a... Moderate Unreviewed

CVE-2015-3716 was published May 17, 2022

Proxy command injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions... High Unreviewed

CVE-2017-14081 was published May 17, 2022

scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell... High Unreviewed

CVE-2015-5704 was published May 17, 2022

Lenovo System Update (formerly ThinkVantage System Update) before 5.07.0013 allows local users to... High Unreviewed

CVE-2015-6971 was published May 17, 2022

The login page of the server on Huawei FusionServer rack servers RH2288 V3 with software before... Critical Unreviewed

CVE-2015-7841 was published May 17, 2022

QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8... Critical Unreviewed

CVE-2017-13069 was published May 17, 2022

UI-Dialog 1.09 and earlier allows remote attackers to execute arbitrary commands. Critical Unreviewed

CVE-2008-7315 was published May 17, 2022

Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute... Critical Unreviewed

CVE-2013-6924 was published May 17, 2022

Module::Signature before 0.74 allows remote attackers to execute arbitrary shell commands via a... High Unreviewed

CVE-2015-3408 was published May 17, 2022

Swift Mailer mail transport Command Injection Critical

CVE-2016-10074 was published for swiftmailer/swiftmailer (Composer) May 17, 2022

The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2... High Unreviewed

CVE-2014-8517 was published May 17, 2022

An issue was discovered in Cloud Foundry Foundation Cloud Foundry release versions prior to v245... Critical Unreviewed

CVE-2016-6655 was published May 17, 2022

Eval injection vulnerability in the fm_saveHelperGatherItems function in ajax.php in the Form... Critical Unreviewed

CVE-2015-7806 was published May 17, 2022

The Net::Ping::External extension through 0.15 for Perl does not properly sanitize arguments (e.g... Critical Unreviewed

CVE-2008-7319 was published May 17, 2022

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed

CVE-2017-8132 was published May 17, 2022

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed

CVE-2017-8134 was published May 17, 2022

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed

CVE-2017-8131 was published May 17, 2022

Previous 1…95…120 Next

Previous 1 2 … 93 94 95 96 97 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,989 advisories