Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,102 advisories

Loading
The CLI in Cisco Prime Collaboration 9.0 and 11.0 allows local users to execute arbitrary OS... Moderate Unreviewed
CVE-2016-1320 was published May 17, 2022
A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2... Moderate Unreviewed
CVE-2015-4330 was published May 17, 2022
A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows... High Unreviewed
CVE-2015-0691 was published May 17, 2022
IBM Security Guardium Database Activity Monitor appliance could allow a local user to inject... High Unreviewed
CVE-2016-6065 was published May 17, 2022
A vulnerability in CLI command processing in the Cisco Firepower 4100 Series Next-Generation... Moderate Unreviewed
CVE-2017-3806 was published May 17, 2022
ping.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated... Critical Unreviewed
CVE-2017-6077 was published May 17, 2022
An issue was discovered in Radisys MRF Web Panel (SWMS) 9.0.1. The MSM_MACRO_NAME POST parameter... Critical Unreviewed
CVE-2016-10043 was published May 17, 2022
ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an... High Unreviewed
CVE-2017-5330 was published May 17, 2022
textract before 1.5.0 allows OS Command Injection attacks via a filename in a call to the process... High Unreviewed
CVE-2016-10320 was published May 17, 2022
A command injection vulnerability was discovered on the Zyxel EMG2926 home router with firmware... High Unreviewed
CVE-2017-6884 was published May 17, 2022
Symantec Web Gateway (SWG) before 5.2.5 allows remote authenticated users to execute arbitrary OS... High Unreviewed
CVE-2016-5313 was published May 17, 2022
Security guide for website operators allows remote attackers to execute arbitrary OS commands via... High Unreviewed
CVE-2017-2128 was published May 17, 2022
WN-G300R3 firmware 1.03 and earlier allows attackers with administrator rights to execute... High Unreviewed
CVE-2017-2141 was published May 17, 2022
WNC01WH firmware 1.0.0.9 and earlier allows authenticated attackers to execute arbitrary OS... Moderate Unreviewed
CVE-2017-2152 was published May 17, 2022
TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware... High Unreviewed
CVE-2017-2112 was published May 17, 2022
Atlassian SourceTree v2.5c and prior are affected by a command injection in the handling of the... Critical Unreviewed
CVE-2017-8768 was published May 17, 2022
I-O DATA DEVICE WFS-SR01 firmware version 1.10 and earlier allow remote attackers to execute... Critical Unreviewed
CVE-2016-7806 was published May 17, 2022
I-O DATA DEVICE TS-WRLP firmware version 1.01.02 and earlier and TS-WRLA firmware version 1.01.02... High Unreviewed
CVE-2016-7819 was published May 17, 2022
A vulnerability in the esc_listener.py script of Cisco Elastic Services Controllers could allow... High Unreviewed
CVE-2017-6683 was published May 17, 2022
A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an... High Unreviewed
CVE-2017-6682 was published May 17, 2022
Command Injection in Pygments Critical
CVE-2015-8557 was published for Pygments (pip) May 17, 2022
tdunlap607
Credited to tdunlap607
An issue was discovered in phpMyAdmin. A user can execute a remote code execution attack against... High Unreviewed
CVE-2016-6631 was published May 17, 2022
Ruckus Wireless H500 web management interface authenticated command injection High Unreviewed
CVE-2016-1000216 was published May 17, 2022
A vulnerability in the CLI command-parsing code of the Cisco StarOS operating system for Cisco... High Unreviewed
CVE-2017-6707 was published May 17, 2022
A vulnerability in certain commands of Cisco Elastic Services Controller could allow an... High Unreviewed
CVE-2017-6712 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database