Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,102 advisories

Loading
Format string vulnerability in the _Eventlog function in FastBackServer.exe in the Server in IBM... High Unreviewed
CVE-2010-3757 was published May 14, 2022
lhn/public/network/ping in HP SAN/iQ before 9.5 on the HP Virtual SAN Appliance allows remote... High Unreviewed
CVE-2012-4361 was published May 17, 2022
The NetWorker command processor in rrobotd.exe in the Device Manager in EMC AlphaStor 4.0 before... High Unreviewed
CVE-2013-0928 was published May 17, 2022
The close_connections function in /opt/cma/bin/clear_keys.pl in Sophos Web Appliance before 3.7.9... High Unreviewed
CVE-2013-4984 was published May 17, 2022
CRU Ditto Forensic FieldStation with firmware before 2013Oct15a allows remote attackers to... High Unreviewed
CVE-2013-6881 was published May 17, 2022
A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated... High Unreviewed
CVE-2025-0127 was published Apr 11, 2025
The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2013-5667 was published May 17, 2022
OS command injection vulnerability exists in Deco BE65 Pro firmware versions prior to "Deco BE65... High Unreviewed
CVE-2025-32107 was published Apr 11, 2025
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-46598 was published Dec 30, 2022
TRENDnet TEW755AP 1.13B01 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-46597 was published Dec 30, 2022
A command injection vulnerability in the Palo Alto Networks Cortex XDR® Broker VM allows an... Moderate Unreviewed
CVE-2025-0119 was published Apr 11, 2025
The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A... High Unreviewed
CVE-2014-1982 was published May 17, 2022
The network interface configuration page (netinterface) in Sophos Web Appliance before 3.8.2... High Unreviewed
CVE-2014-2850 was published May 17, 2022
systest.php on IBM GCM16 and GCM32 Global Console Manager switches with firmware before 1.20.20... High Unreviewed
CVE-2014-3085 was published May 17, 2022
The Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows remote authenticated users... High Unreviewed
CVE-2014-5502 was published May 17, 2022
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of... High Unreviewed
CVE-2014-6277 was published May 14, 2022
gpExec in GoPro HERO 3+ allows remote attackers to execute arbitrary commands via a the (1) a1 or... High Unreviewed
CVE-2014-6434 was published May 17, 2022
The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote... Moderate Unreviewed
CVE-2014-8334 was published May 14, 2022
index.php in Softaculous Webuzo before 2.1.4 allows remote attackers to execute arbitrary... High Unreviewed
CVE-2013-6041 was published May 14, 2022
A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows... High Unreviewed
CVE-2015-0691 was published May 17, 2022
The cpanel function in go_site.php in GoAutoDial GoAdmin CE before 3.3-1421902800 allows remote... High Unreviewed
CVE-2015-2845 was published May 14, 2022
The cpanel function in go_site.php in GoAutoDial GoAdmin CE before 3.3-1420434000 allows remote... High Unreviewed
CVE-2015-2844 was published May 14, 2022
AVM Fritz!Box allows remote attackers to execute arbitrary commands via shell metacharacters in... High Unreviewed
CVE-2014-9727 was published May 14, 2022
The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), and... Moderate Unreviewed
CVE-2015-4237 was published May 17, 2022
The Yodobashi application 1.2.1.0 and earlier for Android allows remote attackers to execute... Moderate Unreviewed
CVE-2015-2980 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database