Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,105 advisories

Loading
An issue was discovered in the add function in Shenzhim AAPTJS 1.3.1 which allows attackers to... Critical Unreviewed
CVE-2020-26707 was published May 24, 2022
gl-inet GL-MT300N-V2 Mango v3.212 and GL-AX1800 Flint v3.214 were discovered to contain multiple... High Unreviewed
CVE-2022-31898 was published Oct 27, 2022
A command injection vulnerability has been reported to affect QNAP device running Media Streaming... High Unreviewed
CVE-2021-34362 was published May 24, 2022
Mobile Access Portal Native Applications who's path is defined by the administrator with... High Unreviewed
CVE-2021-30358 was published May 24, 2022
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker... Critical Unreviewed
CVE-2021-38478 was published May 24, 2022
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker... Critical Unreviewed
CVE-2021-38470 was published May 24, 2022
Movable Type 7 r.5002 and earlier (Movable Type 7 Series), Movable Type 6.8.2 and earlier ... Critical Unreviewed
CVE-2021-20837 was published May 24, 2022
Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode... Critical Unreviewed
CVE-2022-33195 was published Oct 25, 2022
Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect... Critical Unreviewed
CVE-2022-33204 was published Oct 25, 2022
Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect... Critical Unreviewed
CVE-2022-33207 was published Oct 25, 2022
An OS command injection vulnerability exists in the web interface /action/ipcamRecordPost... High Unreviewed
CVE-2022-32586 was published Oct 25, 2022
An OS command injection vulnerability exists in the js_package install functionality of Robustel... Critical Unreviewed
CVE-2022-33150 was published Oct 25, 2022
An os command injection vulnerability exists in the web interface util_set_abode_code... Critical Unreviewed
CVE-2022-27804 was published Oct 25, 2022
documentconverter in OX App Suite through 7.10.6, in a non-default configuration with ghostscript... Critical Unreviewed
CVE-2022-29851 was published Oct 25, 2022
Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode... Critical Unreviewed
CVE-2022-33193 was published Oct 25, 2022
An OS command injection vulnerability exists in the XCMD setAlexa functionality of Abode Systems,... Critical Unreviewed
CVE-2022-33189 was published Oct 25, 2022
An OS command injection vulnerability exists in the XCMD setUPnP functionality of Abode Systems,... Critical Unreviewed
CVE-2022-30541 was published Oct 25, 2022
An OS command injection vulnerability exists in the XCMD doDebug functionality of Abode Systems,... Critical Unreviewed
CVE-2022-32773 was published Oct 25, 2022
Four OS command injection vulnerabilities exist in the XCMD testWifiAP functionality of Abode... Critical Unreviewed
CVE-2022-33194 was published Oct 25, 2022
Four OS command injection vulnerabilities exists in the web interface /action/wirelessConnect... Critical Unreviewed
CVE-2022-33206 was published Oct 25, 2022
An OS command injection vulnerability exists in the web_server /action/import_authorized_keys/... High Unreviewed
CVE-2022-34850 was published Oct 25, 2022
An OS command injection vulnerability exists in the web interface util_set_serial_mac... Critical Unreviewed
CVE-2022-29472 was published Oct 25, 2022
A command injection vulnerability in command processing on Juniper Networks Junos OS Evolved... High Unreviewed
CVE-2021-31356 was published May 24, 2022
The WordPress PDF Light Viewer Plugin WordPress plugin before 1.4.12 allows users with Author... High Unreviewed
CVE-2021-24684 was published May 24, 2022
A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant (IAP)... High Unreviewed
CVE-2021-37732 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database