Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection... High Unreviewed
CVE-2017-8133 was published May 17, 2022
The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier... High Unreviewed
CVE-2017-2692 was published May 17, 2022
FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability. An authenticated,... High Unreviewed
CVE-2017-8197 was published May 17, 2022
The FusionSphere OpenStack V100R006C00SPC102(NFV) has a command injection vulnerability. Due to... High Unreviewed
CVE-2017-8193 was published May 17, 2022
FusionSphere OpenStack V100R006C00SPC102(NFV)has a command injection vulnerability. Due to lack... High Unreviewed
CVE-2017-8188 was published May 17, 2022
FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection... High Unreviewed
CVE-2017-2719 was published May 17, 2022
VCM5010 with software versions earlier before V100R002C50SPC100 has a command injection... High Unreviewed
CVE-2017-2736 was published May 17, 2022
QNAP has already patched this vulnerability. This security concern allows a remote attacker to... Critical Unreviewed
CVE-2017-13071 was published May 17, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... Moderate Unreviewed
CVE-2017-12339 was published May 17, 2022
A remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system... Critical Unreviewed
CVE-2021-42897 was published May 17, 2022
A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... Critical Unreviewed
CVE-2022-23663 was published May 17, 2022
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed
CVE-2017-8135 was published May 14, 2022
The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before... Moderate Unreviewed
CVE-2014-4336 was published May 14, 2022
sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script ... High Unreviewed
CVE-2012-1823 was published May 14, 2022
IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS... High Unreviewed
CVE-2016-0324 was published May 14, 2022
Echor contains Command Injection High
CVE-2014-1834 was published for echor (RubyGems) May 14, 2022
IBM Notes 8.5 and 9.0 could allow a local attacker to execute arbitrary commands by carefully... Moderate Unreviewed
CVE-2017-1720 was published May 14, 2022
A Remote Arbitrary Code Execution vulnerability in HPE Smart Storage Administrator version before... High Unreviewed
CVE-2016-8523 was published May 14, 2022
The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8... Critical Unreviewed
CVE-2016-2396 was published May 14, 2022
The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1... Critical Unreviewed
CVE-2016-2397 was published May 14, 2022
The installPackage function in the installerHelper subcomponent in Libmacgpg in GPG Suite before... High Unreviewed
CVE-2014-4677 was published May 14, 2022
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan... Critical Unreviewed
CVE-2014-6120 was published May 14, 2022
The EZPZ One Click Backup (ezpz-one-click-backup) plugin 12.03.10 and earlier for WordPress... Critical Unreviewed
CVE-2014-3114 was published May 14, 2022
Tryton vulnerable to arbitrary command execution High
CVE-2014-6633 was published for tryton (pip) May 14, 2022
The WordPress Flash Uploader plugin before 3.1.3 for WordPress allows remote attackers to execute... Critical Unreviewed
CVE-2014-5014 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database