Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,102 advisories

Loading
A vulnerability in the Cisco Virtual Network Function (VNF) Element Manager could allow an... High Unreviewed
CVE-2017-6710 was published May 17, 2022
Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary... High Unreviewed
CVE-2017-10811 was published May 17, 2022
Admin/frmSite.aspx in the SmarterTools SmarterStats 6.0 web server allows remote attackers to... High Unreviewed
CVE-2011-2148 was published May 17, 2022
The Trigger plugin in bcfg2 1.2.x before 1.2.3 allows remote attackers with root access to the... High Unreviewed
CVE-2012-3366 was published May 17, 2022
Cisco NX-OS allows local users to gain privileges and execute arbitrary commands via shell... High Unreviewed
CVE-2012-4075 was published May 17, 2022
ping.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka Schneider Electric Ezylog... High Unreviewed
CVE-2012-5863 was published May 17, 2022
Karteek Docsplit vulnerable to OS Command Injection High
CVE-2013-1933 was published for karteek-docsplit (RubyGems) May 17, 2022
The web framework in Cisco WAAS Software before 4.x and 5.x before 5.0.3e, 5.1.x before 5.1.1c,... High Unreviewed
CVE-2013-3444 was published May 17, 2022
delivery.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x, 8.x... Moderate Unreviewed
CVE-2013-6719 was published May 17, 2022
McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands... High Unreviewed
CVE-2013-7103 was published May 17, 2022
McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands... High Unreviewed
CVE-2013-7104 was published May 17, 2022
The Cisco WAP4410N access point with firmware through 2.0.6.1, WRVS4400N router with firmware 1.x... High Unreviewed
CVE-2014-0659 was published May 17, 2022
The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote... High Unreviewed
CVE-2014-0886 was published May 17, 2022
The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote... High Unreviewed
CVE-2014-0887 was published May 17, 2022
Unitrends Enterprise Backup 7.3.0 allows remote authenticated users to execute arbitrary commands... High Unreviewed
CVE-2014-3008 was published May 17, 2022
systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20... High Unreviewed
CVE-2014-3085 was published May 17, 2022
Cisco IOS 12.4 and 15.0 through 15.4 and IOS XE 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, 3.5.xS, 3.6.xS,... High Unreviewed
CVE-2014-3360 was published May 17, 2022
Memory leak in Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO... High Unreviewed
CVE-2014-3358 was published May 17, 2022
Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3... High Unreviewed
CVE-2014-3357 was published May 17, 2022
The administration console in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009... High Unreviewed
CVE-2014-4823 was published May 17, 2022
"Dokodemo eye Smart HD" SCR02HD Firmware 1.0.3.1000 and earlier allows remote attackers to... Critical Unreviewed
CVE-2017-10832 was published May 17, 2022
cgi-bin/cgi_main in NUUO NVRmini 2 1.7.6 through 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2... High Unreviewed
CVE-2016-5679 was published May 17, 2022
AKABEi SOFT2 games allow remote attackers to execute arbitrary OS commands via crafted saved data... High Unreviewed
CVE-2016-4853 was published May 17, 2022
Command Injection in the Ping Module in the Web Interface on Technicolor TD5336 OI_Fw_v7 devices... Critical Unreviewed
CVE-2017-14127 was published May 17, 2022
enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for... Critical Unreviewed
CVE-2017-14135 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database