GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,102 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An Improper Neutralization of Special Elements (in an OS command) issue was discovered in... Critical Unreviewed

CVE-2017-5173 was published May 13, 2022

I-O DATA DEVICE WFS-SR01 firmware version 1.10 and earlier allow remote attackers to execute... Critical Unreviewed

CVE-2016-7806 was published May 17, 2022

IPFire 2.19 has a Remote Command Injection vulnerability in ids.cgi via the OINKCODE parameter,... High Unreviewed

CVE-2017-9757 was published May 13, 2022

The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and... Critical Unreviewed

CVE-2017-8116 was published May 13, 2022

A remote command injection vulnerability exists in the Barracuda Load Balancer product line ... High Unreviewed

CVE-2017-6320 was published May 13, 2022

HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS... High Unreviewed

CVE-2017-2185 was published May 17, 2022

HOME SPOT CUBE2 firmware V101 and earlier allows authenticated attackers to execute arbitrary OS... High Unreviewed

CVE-2017-2183 was published May 17, 2022

NfSen before 1.3.8 allows remote attackers to execute arbitrary OS commands via shell... Critical Unreviewed

CVE-2017-7175 was published May 17, 2022

cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025... Critical Unreviewed

CVE-2015-2279 was published May 14, 2022

snwrite.cgi in AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP network camera with firmware... High Unreviewed

CVE-2015-2280 was published May 14, 2022

GigaCC OFFICE ver.2.3 and earlier allows remote attackers to execute arbitrary OS commands via... Moderate Unreviewed

CVE-2016-7844 was published May 17, 2022

WN-AX1167GR firmware version 3.00 and earlier allows an attacker to execute arbitrary OS commands... High Unreviewed

CVE-2017-2281 was published May 17, 2022

In the EyesOfNetwork web interface (aka eonweb) 5.1-0, module\tool_all\tools\interface.php does... High Unreviewed

CVE-2017-14118 was published May 13, 2022

In the EyesOfNetwork web interface (aka eonweb) 5.1-0, module\tool_all\tools\snmpwalk.php does... High Unreviewed

CVE-2017-14119 was published May 13, 2022

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for... Critical Unreviewed

CVE-2017-14135 was published May 17, 2022

T&W WIFI Repeater BE126 allows remote authenticated users to execute arbitrary code via shell... High Unreviewed

CVE-2017-13713 was published May 13, 2022

DenyAll WAF before 6.4.1 allows unauthenticated remote command execution via TCP port 3001... High Unreviewed

CVE-2017-14705 was published May 13, 2022

Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x... High Unreviewed

CVE-2017-14867 was published May 13, 2022

The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote... High Unreviewed

CVE-2017-11321 was published May 13, 2022

The chroothole_client executable in UCOPIA Wireless Appliance before 5.1.8 allows remote... High Unreviewed

CVE-2017-11322 was published May 13, 2022

Improper Neutralization of Special Elements used in an OS Command in the podcast playback... High Unreviewed

CVE-2017-14500 was published May 13, 2022

Zyxel NBG6716 V1.00(AAKG.9)C0 devices allow command injection in the ozkerz component because... Critical Unreviewed

CVE-2017-15226 was published May 13, 2022

In manager.c in ss-manager in shadowsocks-libev 3.1.0, improper parsing allows command injection... High Unreviewed

CVE-2017-15924 was published May 13, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... High Unreviewed

CVE-2017-10953 was published May 13, 2022

CouchDB administrative users can configure the database server via HTTP(S). Some of the... High Unreviewed

CVE-2017-12636 was published May 14, 2022

Previous 1…135…165 Next

Previous 1 2 … 133 134 135 136 137 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,102 advisories