Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,103 advisories

Loading
OS Command Injection in GitHub repository hestiacp/hestiacp prior to 1.6.5. High Unreviewed
CVE-2022-2550 was published Jul 28, 2022
Improper neutralization of special elements used in an OS command ('OS Command Injection')... High Unreviewed
CVE-2022-22684 was published Jul 29, 2022
IBM CICS TX 11.1 could allow allow an attacker with physical access to the system to execute code... Moderate Unreviewed
CVE-2022-33955 was published Aug 2, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20886 was published Jul 22, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20877 was published Jul 22, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20878 was published Jul 22, 2022
Dell PowerStore, versions prior to 3.0.0.0, contains an OS Command Injection vulnerability in... High Unreviewed
CVE-2022-33923 was published Jul 22, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20874 was published Jul 22, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20880 was published Jul 22, 2022
Rengine v1.3.0 was discovered to contain a command injection vulnerability via the scan engine... Critical Unreviewed
CVE-2022-36566 was published Sep 1, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20910 was published Jul 23, 2022
The admin web interface in Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051,... High Unreviewed
CVE-2015-6298 was published May 17, 2022
Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote authenticated users... Critical Unreviewed
CVE-2015-8151 was published May 17, 2022
IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject... High Unreviewed
CVE-2016-6065 was published May 17, 2022
OX App Suite through 7.10.6 allows OS Command Injection via a serialized Java class to the... Critical Unreviewed
CVE-2022-24405 was published Jul 28, 2022
This affects all versions of package s3-kilatstorage. Critical Unreviewed
CVE-2020-28424 was published Aug 3, 2022
A vulnerability, which was classified as critical, was found in WAVLINK WN535K2 and WN535K3. This... Critical Unreviewed
CVE-2022-2486 was published Jul 21, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20884 was published Jul 22, 2022
Cisco Unified Computing System (UCS) Central Software 1.3(1b) and earlier allows remote attackers... Critical Unreviewed
CVE-2016-1352 was published May 17, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20873 was published Jul 22, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2022-20881 was published Jul 22, 2022
The boot implementation on Cisco ASR 5000 and 5500 devices with software 14.0 allows local users... High Unreviewed
CVE-2015-4244 was published May 17, 2022
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and... Moderate Unreviewed
CVE-2015-7310 was published May 17, 2022
A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2... Moderate Unreviewed
CVE-2015-4330 was published May 17, 2022
OX App Suite through 7.10.6 allows OS Command Injection via Documentconverter (e.g., through an... Critical Unreviewed
CVE-2022-23100 was published Jul 28, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database