GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,152

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,105 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local... High Unreviewed

CVE-2021-34728 was published May 24, 2022

Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local... High Unreviewed

CVE-2021-34722 was published May 24, 2022

Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local... Moderate Unreviewed

CVE-2021-34721 was published May 24, 2022

Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local... High Unreviewed

CVE-2021-34719 was published May 24, 2022

Rittal CMC PU III Web management Version affected: V3.11.00_2. Version fixed: V3.17.10 is... High Unreviewed

CVE-2021-40222 was published May 24, 2022

A Improper neutralization of special elements used in a command ('Command Injection') in Fortinet... High Unreviewed

CVE-2021-36182 was published May 24, 2022

A vulnerability has been identified in Desigo CC (All versions with OIS Extension Module), GMA... Critical Unreviewed

CVE-2021-31891 was published May 24, 2022

Multiple vulnerabilities in the web-based management interface of Cisco Intersight Virtual... High Unreviewed

CVE-2021-1618 was published May 24, 2022

Remote code execution in the modules component in Yakamara Media Redaxo CMS version 5.12.1 allows... High Unreviewed

CVE-2021-39459 was published May 24, 2022

Adobe After Effects version 18.1 (and earlier) is affected by a potential Command injection... High Unreviewed

CVE-2021-28571 was published May 24, 2022

Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. This... High Unreviewed

CVE-2021-39279 was published May 24, 2022

Command Injection in PPGo_Jobs v2.8.0 allows remote attackers to execute arbitrary code via the ... Critical Unreviewed

CVE-2020-26772 was published May 24, 2022

The Cron job tab in EasyCorp ZenTao 12.5.3 allows remote attackers (who have admin access) to... High Unreviewed

CVE-2021-27556 was published May 24, 2022

Zoho ManageEngine ADSelfService Plus through 6102 allows unauthenticated remote code execution in... Critical Unreviewed

CVE-2021-33055 was published May 24, 2022

A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated... Critical Unreviewed

CVE-2021-31838 was published May 24, 2022

Multiple vulnerabilities in the web UI and API endpoints of Cisco Application Policy... High Unreviewed

CVE-2021-1580 was published May 24, 2022

A Shell Metacharacter Injection vulnerability in result.php in DRK Odenwaldkreis Testerfassung... High Unreviewed

CVE-2021-35062 was published May 24, 2022

A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ... Moderate Unreviewed

CVE-2021-1584 was published May 24, 2022

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to... Moderate Unreviewed

CVE-2022-20865 was published Aug 26, 2022

Network Attached Storage on LG N1T1*** 10124 devices allows an unauthenticated attacker to gain... Critical Unreviewed

CVE-2021-38306 was published May 24, 2022

From Apache NiFi MiNiFi C++ version 0.5.0 the c2 protocol implements an "agent-update" command... Critical Unreviewed

CVE-2021-33191 was published May 24, 2022

Authenticated Semi-Blind Command Injection (via Parameter Injection) exists on Altus Nexto, Nexto... High Unreviewed

CVE-2021-39244 was published May 24, 2022

Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017... High Unreviewed

CVE-2021-28634 was published May 24, 2022

Adobe Illustrator version 25.2.3 (and earlier) is affected by a potential Command injection... High Unreviewed

CVE-2021-36011 was published May 24, 2022

D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS command... High Unreviewed

CVE-2021-3708 was published May 24, 2022

Previous 1…137…165 Next

Previous 1 2 … 135 136 137 138 139 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,105 advisories