GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,992 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Apache James vulnerable to buffering attack High

CVE-2022-28220 was published for org.apache.james:james-server (Maven) Sep 9, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-40987 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy... High Unreviewed

CVE-2021-37739 was published May 24, 2022

Multiple vulnerabilities in the Cisco ATA 190 Series Analog Telephone Adapter Software could... High Unreviewed

CVE-2021-34710 was published May 24, 2022

Remote Code Execution vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM)... Critical Unreviewed

CVE-2021-38124 was published May 24, 2022

There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6... High Unreviewed

CVE-2021-37106 was published May 24, 2022

A command injection vulnerability has been reported to affect QNAP device running QVR. If... Critical Unreviewed

CVE-2021-34351 was published May 24, 2022

A command injection vulnerability has been reported to affect QNAP device running QVR. If... Critical Unreviewed

CVE-2021-34348 was published May 24, 2022

An issue was discovered in Zammad before 4.1.1. Command Injection can occur via custom Packages. Critical Unreviewed

CVE-2021-42094 was published May 24, 2022

ManageEngine Desktop Central before build 10.0.683 allows Unauthenticated Remote Code Execution... Critical Unreviewed

CVE-2021-28960 was published May 24, 2022

Edgecore ECS2020 Firmware 1.0.0.0 devices allow Unauthenticated Command Injection via the... Critical Unreviewed

CVE-2019-6288 was published May 24, 2022

A command injection vulnerability has been reported to affect QNAP device running QVR. If... Critical Unreviewed

CVE-2021-34352 was published May 24, 2022

A command injection vulnerability has been reported to affect QNAP device running QVR. If... High Unreviewed

CVE-2021-34349 was published May 24, 2022

There is command injection in the meshd program in the routing system, resulting in command... High Unreviewed

CVE-2020-14109 was published May 24, 2022

Command Injection in Jfinal CMS v4.7.1 and earlier allows remote attackers to execute arbitrary... High Unreviewed

CVE-2020-19151 was published May 24, 2022

setup.cgi on NETGEAR R6020 1.0.0.48 devices allows an admin to execute arbitrary shell commands... High Unreviewed

CVE-2021-41383 was published May 24, 2022

There is command injection in the addMeshNode interface of xqnetwork.lua, which leads to command... Critical Unreviewed

CVE-2020-14119 was published May 24, 2022

TOTOLINK A810R V5.9c.4050_B20190424 was discovered to contain a command injection vulnerability... High Unreviewed

CVE-2022-38511 was published Aug 29, 2022

A command injection vulnerability in the CLI (Command Line Interface) implementation of Hytec... Critical Unreviewed

CVE-2022-36554 was published Aug 30, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37721 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37718 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37717 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37719 was published May 24, 2022

Command Injection in PPGo_Jobs v2.8.0 allows remote attackers to execute arbitrary code via the ... Critical Unreviewed

CVE-2020-26772 was published May 24, 2022

A remote arbitrary command execution vulnerability was discovered in Aruba SD-WAN Software and... High Unreviewed

CVE-2021-37720 was published May 24, 2022

Previous 1…96…120 Next

Previous 1 2 … 94 95 96 97 98 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,992 advisories