Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,102 advisories

Loading
Buffalo network devices WSR-3200AX4S firmware Ver. 1.26 and earlier, WSR-3200AX4B firmware Ver. 1... High Unreviewed
CVE-2022-43443 was published Dec 19, 2022
Buffalo network devices WSR-3200AX4S firmware Ver. 1.26 and earlier, WSR-3200AX4B firmware Ver. 1... Moderate Unreviewed
CVE-2022-43466 was published Dec 19, 2022
A Remote Code Execution (RCE) vulnerability was found in includes/baijiacms/common.inc.php in... High Unreviewed
CVE-2022-45942 was published Dec 20, 2022
The default console presented to users over telnet (when enabled) is restricted to a subset of... High Unreviewed
CVE-2022-47210 was published Dec 16, 2022
cycle-import-check vulnerable to Command Injection Critical
CVE-2022-24377 was published for cycle-import-check (npm) Dec 14, 2022
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-29042 was published Apr 17, 2025
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-29043 was published Apr 17, 2025
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-29041 was published Apr 17, 2025
An issue in dlink DIR 832x 240802 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2025-29040 was published Apr 17, 2025
An issue was discovered in Radisys MRF Web Panel (SWMS) 9.0.1. The MSM_MACRO_NAME POST parameter... Critical Unreviewed
CVE-2016-10043 was published May 17, 2022
In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible... Critical Unreviewed
CVE-2017-6182 was published May 13, 2022
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute... High Unreviewed
CVE-2017-6970 was published May 13, 2022
QNAP QTS before 4.2.4 Build 20170313 allows attackers to gain administrator privileges and... Critical Unreviewed
CVE-2017-6359 was published May 13, 2022
QNAP QTS before 4.2.4 Build 20170313 allows attackers to gain administrator privileges and obtain... Critical Unreviewed
CVE-2017-6360 was published May 13, 2022
QNAP QTS before 4.2.4 Build 20170313 allows attackers to execute arbitrary commands via... Critical Unreviewed
CVE-2017-6361 was published May 13, 2022
EyesOfNetwork ("EON") 5.0 and earlier allows remote authenticated users to execute arbitrary code... High Unreviewed
CVE-2017-6087 was published May 13, 2022
ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an... High Unreviewed
CVE-2017-5330 was published May 17, 2022
Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3... High Unreviewed
CVE-2016-9091 was published May 17, 2022
Proxifier for Mac before 2.19.2, when first run, allows local users to gain privileges by... High Unreviewed
CVE-2017-7690 was published May 13, 2022
An exploitable OS Command Injection vulnerability exists in the web application 'ping'... Critical Unreviewed
CVE-2016-8721 was published May 13, 2022
Tenable Appliance 3.5 - 4.4.0, and possibly prior versions, contains a flaw in the simpleupload... Critical Unreviewed
CVE-2017-8051 was published May 13, 2022
Tuleap before 9.7 allows command injection via the PhpWiki 1.3.10 SyntaxHighlighter plugin. This... High Unreviewed
CVE-2017-7981 was published May 13, 2022
TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware... High Unreviewed
CVE-2017-2112 was published May 17, 2022
WN-G300R3 firmware 1.03 and earlier allows attackers with administrator rights to execute... High Unreviewed
CVE-2017-2141 was published May 17, 2022
I-O DATA DEVICE TS-WRLP firmware version 1.01.02 and earlier and TS-WRLA firmware version 1.01.02... High Unreviewed
CVE-2016-7819 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database