Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,992
Erlang
39
GitHub Actions
38
Go
2,634
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
955
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
The STARTTLS implementation in mail/ngx_mail_smtp_handler.c in the SMTP proxy in nginx 1.5.x and... Moderate Unreviewed
CVE-2014-3556 was published May 13, 2022
A Command Injection vulnerability in Schneider Electric homeLYnk Controller exists in all... Critical Unreviewed
CVE-2017-7689 was published May 13, 2022
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly... High Unreviewed
CVE-2014-3524 was published May 13, 2022
An exploitable command injection vulnerability exists in the DHCP daemon configuration of the... Critical Unreviewed
CVE-2018-3963 was published May 13, 2022
An exploitable vulnerability exists in the WiFi Channel parsing of Circle with Disney running... Moderate Unreviewed
CVE-2017-12094 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2833 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2832 was published May 13, 2022
An exploitable command execution vulnerability exists in Information Builders WebFOCUS Business... High Unreviewed
CVE-2016-9044 was published May 13, 2022
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via... Critical Unreviewed
CVE-2022-29303 was published May 13, 2022
A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link... Critical Unreviewed
CVE-2022-28896 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28907 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28906 was published May 11, 2022
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-28915 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28913 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28910 was published May 11, 2022
A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882... Critical Unreviewed
CVE-2022-28901 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28911 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28909 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28908 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28905 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28912 was published May 11, 2022
A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882... Critical Unreviewed
CVE-2022-28895 was published May 11, 2022
IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute... High Unreviewed
CVE-2022-22454 was published May 11, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed
CVE-2022-27224 was published May 10, 2022
Command injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information... High Unreviewed
CVE-2022-23332 was published May 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database