GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,614
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,638
Maven 6,105
npm 4,264
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,056
Swift 45

Unreviewed advisories

All unreviewed 277,032

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,102 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an... High Unreviewed

CVE-2019-1699 was published May 24, 2022

The ZyXEL P660HN-T1A v2 TCLinux Fw #7.3.37.6 router distributed by TrueOnline has a command... High Unreviewed

CVE-2017-18370 was published May 24, 2022

The Billion 5200W-T 1.02b.rc5.dt49 router distributed by TrueOnline has a command injection... Critical Unreviewed

CVE-2017-18369 was published May 24, 2022

The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a... High Unreviewed

CVE-2017-18372 was published May 24, 2022

The ZyXEL P660HN-T1A v1 TCLinux Fw $7.3.15.0 v001 / 3.40(ULM.0)b31 router distributed by... Critical Unreviewed

CVE-2017-18368 was published May 24, 2022

gpg-key2ps in signing-party 1.1.x and 2.x before 2.10-1 contains an unsafe shell call enabling... Critical Unreviewed

CVE-2019-11627 was published May 24, 2022

The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG... Critical Unreviewed

CVE-2019-3929 was published May 24, 2022

In Firefox Developer Tools it is possible that pasting the result of the 'Copy as cURL' command... Critical Unreviewed

CVE-2019-9804 was published May 24, 2022

In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX... High Unreviewed

CVE-2019-11539 was published May 24, 2022

A command injection vulnerability in PWS in Imperva SecureSphere 13.0.0.10 and 13.1.0.10 Gateway... High Unreviewed

CVE-2018-16660 was published May 24, 2022

A command injection (missing input validation, escaping) in the monitoring or memory status web... High Unreviewed

CVE-2018-16216 was published May 24, 2022

LibreNMS arbitrary OS commands execution Critical

CVE-2018-20434 was published for librenms/librenms (Composer) May 24, 2022

An issue was discovered in Liferay Portal CE 7.1.2 GA3. An attacker can use Liferay's Groovy... High Unreviewed

CVE-2019-11444 was published May 24, 2022

OS Command Injection in GitHub repository yogeshojha/rengine prior to 1.2.0. Critical Unreviewed

CVE-2022-1813 was published May 23, 2022

mailcow before 2022-05d allows a remote authenticated user to inject OS commands and escalate... High Unreviewed

CVE-2022-31245 was published May 21, 2022

The web console of FUJITSU Network IPCOM series (IPCOM EX2 IN(3200, 3500), IPCOM EX2 LB(1100,... Critical Unreviewed

CVE-2022-29516 was published May 19, 2022

In Belkin N300 Firmware 1.00.08, the script located at /setting_hidden.asp, which is accessible... Critical Unreviewed

CVE-2022-30105 was published May 19, 2022

A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that... High Unreviewed

CVE-2021-42852 was published May 19, 2022

cnMaestro is vulnerable to a local privilege escalation. By default, a user does not have root... High Unreviewed

CVE-2022-1356 was published May 18, 2022

The affected On-Premise cnMaestro is vulnerable to an arbitrary file-write through improper... High Unreviewed

CVE-2022-1359 was published May 18, 2022

The affected On-Premise cnMaestro allows an unauthenticated attacker to access the cnMaestro... Critical Unreviewed

CVE-2022-1357 was published May 18, 2022

The affected On-Premise cnMaestro is vulnerable to execution of code on the cnMaestro hosting... Critical Unreviewed

CVE-2022-1360 was published May 18, 2022

The affected On-Premise cnMaestro is vulnerable inside a specific route where a user can upload a... High Unreviewed

CVE-2022-1362 was published May 18, 2022

LPAR2RRD in 3.5 and earlier allows remote attackers to execute arbitrary commands due to... Critical Unreviewed

CVE-2014-4981 was published May 17, 2022

The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection. Critical Unreviewed

CVE-2014-2727 was published May 17, 2022

Previous 1…118…165 Next

Previous 1 2 … 116 117 118 119 120 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,102 advisories