GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,536
Composer 4,969
Erlang 39
GitHub Actions 38
Go 2,624
Maven 6,101
npm 4,257
NuGet 760
pip 4,050
Pub 12
RubyGems 953
Rust 1,052
Swift 45

Unreviewed advisories

All unreviewed 276,091

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,989 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

TOTOLink A3000RU V5.9c.2280_B20180512 was discovered to contain a command injection vulnerability... Critical Unreviewed

CVE-2022-25075 was published Feb 25, 2022

TOTOLink T10 V5.9c.5061_B20200511 was discovered to contain a command injection vulnerability in... Critical Unreviewed

CVE-2022-25081 was published Feb 25, 2022

TOTOLink A810R V4.1.2cu.5182_B20201026 was discovered to contain a command injection... Critical Unreviewed

CVE-2022-25079 was published Feb 25, 2022

TOTOLink A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection... Critical Unreviewed

CVE-2022-25083 was published Feb 25, 2022

TOTOLink A3100R V4.1.2cu.5050_B20200504 was discovered to contain a command injection... Critical Unreviewed

CVE-2022-25077 was published Feb 25, 2022

TOTOLink A950RG V5.9c.4050_B20190424 and V4.1.2cu.5204_B20210112 were discovered to contain a... Critical Unreviewed

CVE-2022-25082 was published Feb 25, 2022

TOTOLink A830R V5.9c.4729_B20191112 was discovered to contain a command injection vulnerability... Critical Unreviewed

CVE-2022-25080 was published Feb 25, 2022

TOTOLink T6 V5.9c.4085_B20190428 was discovered to contain a command injection vulnerability in... Critical Unreviewed

CVE-2022-25084 was published Feb 25, 2022

TOTOLink A3600R V4.1.2cu.5182_B20201102 was discovered to contain a command injection... Critical Unreviewed

CVE-2022-25078 was published Feb 25, 2022

Improper Neutralization of audio output from 3rd and 4th Generation Amazon Echo Dot devices... Critical Unreviewed

CVE-2022-25809 was published Feb 25, 2022

Honeywell HDZP252DI 1.00.HW02.4 and HBW2PER1 1.000.HW01.3 devices allow a video replay attack... Critical Unreviewed

CVE-2021-39363 was published Feb 25, 2022

Okta Advanced Server Access Client for Windows prior to version 1.57.0 was found to be vulnerable... High Unreviewed

CVE-2022-24295 was published Feb 22, 2022

IBM Planning Analytics 2.0 is vulnerable to a Remote File Include (RFI) attack. User input could... High Unreviewed

CVE-2022-22308 was published Feb 22, 2022

A command injection vulnerability in the function updateWifiInfo of TOTOLINK Technology routers... Critical Unreviewed

CVE-2022-25130 was published Feb 20, 2022

Command Injection in Cobbler High

CVE-2021-45082 was published for cobbler (pip) Feb 20, 2022

A command injection vulnerability in the function recvSlaveCloudCheckStatus of TOTOLINK... Critical Unreviewed

CVE-2022-25131 was published Feb 20, 2022

A command injection vulnerability in the function isAssocPriDevice of TOTOLINK Technology router... Critical Unreviewed

CVE-2022-25133 was published Feb 20, 2022

A command injection vulnerability in the function meshSlaveDlfw of TOTOLINK Technology router T6... Critical Unreviewed

CVE-2022-25132 was published Feb 20, 2022

A command injection vulnerability in the function setUpgradeFW of TOTOLINK Technology router T6... Critical Unreviewed

CVE-2022-25134 was published Feb 20, 2022

A command injection vulnerability in the function recv_mesh_info_sync of TOTOLINK Technology... Critical Unreviewed

CVE-2022-25135 was published Feb 20, 2022

A command injection vulnerability in the function recvSlaveUpgstatus of TOTOLINK Technology... Critical Unreviewed

CVE-2022-25137 was published Feb 20, 2022

A command injection vulnerability in the function meshSlaveUpdate of TOTOLINK Technology routers... Critical Unreviewed

CVE-2022-25136 was published Feb 20, 2022

A Command injection vulnerability exists in Tenda AC10U AC1200 Smart Dual-band Wireless Router... Critical Unreviewed

CVE-2021-45401 was published Feb 19, 2022

A Remote Command Execution (RCE) vulnerability exists in HNAP1/control... Critical Unreviewed

CVE-2021-46314 was published Feb 18, 2022

A Remote Command Execution (RCE) vulnerability exists in all series H/W revisions D-link DIR-810L... Critical Unreviewed

CVE-2021-45382 was published Feb 18, 2022

Previous 1…107…120 Next

Previous 1 2 … 105 106 107 108 109 … 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,989 advisories