Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
phpMyAdmin PHP code injection High
CVE-2016-6609 was published for phpmyadmin/phpmyadmin (Composer) May 14, 2022
The web administrative portal in Zhone zNID GPON 2426A before S3.0.501 allows remote attackers to... High Unreviewed
CVE-2014-9118 was published May 14, 2022
Technicolor Router TD5130 with firmware 2.05.C29GV allows remote attackers to execute arbitrary... High Unreviewed
CVE-2014-9144 was published May 14, 2022
Improper Neutralization of Special Elements used in a Command in Apache Cassandra High
CVE-2015-0225 was published for org.apache.cassandra:apache-cassandra (Maven) May 14, 2022
The help window in Epicor CRS Retail Store before 3.2.03.01.008 allows local users to execute... High Unreviewed
CVE-2015-2210 was published May 14, 2022
The network diagnostics tool (CommandLineServlet) in the Appliance Manager command line utility ... Moderate Unreviewed
CVE-2015-2746 was published May 14, 2022
ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101... Critical Unreviewed
CVE-2015-6024 was published May 14, 2022
Synology Video Station before 1.5-0763 allows remote attackers to execute arbitrary shell... High Unreviewed
CVE-2015-6912 was published May 14, 2022
xymond in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow remote authenticated users to execute... High Unreviewed
CVE-2016-2056 was published May 14, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to two Remote... Critical Unreviewed
CVE-2016-9682 was published May 14, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote... Critical Unreviewed
CVE-2016-9683 was published May 14, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote... Critical Unreviewed
CVE-2016-9684 was published May 14, 2022
zend-mail remote code execution via Sendmail adapter Critical
CVE-2016-10034 was published for zendframework/zend-mail (Composer) May 14, 2022
osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell metacharacters... High Unreviewed
CVE-2015-0778 was published May 14, 2022
karo Metacharacter Handling Remote Command Execution Critical
CVE-2014-10075 was published for karo (RubyGems) May 14, 2022
jasnow
Credited to jasnow
An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a... High Unreviewed
CVE-2016-10729 was published May 14, 2022
Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to send... Moderate Unreviewed
CVE-2015-6613 was published May 14, 2022
Fileutils Command Injection vulnerability High
CVE-2013-2516 was published for fileutils (RubyGems) May 14, 2022
The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7... Critical Unreviewed
CVE-2016-2002 was published May 14, 2022
Command injection vulnerability in login_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27... High Unreviewed
CVE-2019-6272 was published May 14, 2022
Command injection vulnerability in firmware_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2... High Unreviewed
CVE-2019-6275 was published May 14, 2022
Donfig Command Injection in collect_yaml method Critical
CVE-2019-7537 was published for donfig (pip) May 14, 2022
An issue was discovered in CMS Made Simple 2.2.8. It is possible, with an administrator account,... High Unreviewed
CVE-2019-9059 was published May 14, 2022
The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0, 12.1.3.0, and 12.2.1.0... High Unreviewed
CVE-2015-4852 was published May 14, 2022
An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Command... High Unreviewed
CVE-2019-9743 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database