Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,100 advisories

Loading
Command injection vulnerability in SSH of QNAP Q'center Virtual Appliance version 1.7.1063 and... High Unreviewed
CVE-2018-0710 was published May 13, 2022
Command injection vulnerability in change password of QNAP Q'center Virtual Appliance version 1.7... High Unreviewed
CVE-2018-0707 was published May 13, 2022
Command injection vulnerability in networking of QNAP Q'center Virtual Appliance version 1.7.1063... High Unreviewed
CVE-2018-0708 was published May 13, 2022
Command injection vulnerability in date of QNAP Q'center Virtual Appliance version 1.7.1063 and... High Unreviewed
CVE-2018-0709 was published May 13, 2022
'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is... Critical Unreviewed
CVE-2017-9828 was published May 13, 2022
IPFire 2.19 has a Remote Command Injection vulnerability in ids.cgi via the OINKCODE parameter,... High Unreviewed
CVE-2017-9757 was published May 13, 2022
The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a... Critical Unreviewed
CVE-2017-9483 was published May 13, 2022
A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware... High Unreviewed
CVE-2017-9377 was published May 13, 2022
Shell metacharacter injection vulnerability in /usr/www/include/ajax/GetTest.php in TerraMaster... Critical Unreviewed
CVE-2017-9328 was published May 13, 2022
Untrusted input execution via igetwild in all iRODS versions before 4.1.11 and 4.2.1 allows other... Critical Unreviewed
CVE-2017-8799 was published May 13, 2022
TP-Link C2 and C20i devices through firmware 0.9.1 4.2 v0032.0 Build 160706 Rel.37961n allow... Critical Unreviewed
CVE-2017-8220 was published May 13, 2022
The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and... Critical Unreviewed
CVE-2017-8116 was published May 13, 2022
Tenable Appliance 3.5 - 4.4.0, and possibly prior versions, contains a flaw in the simpleupload... Critical Unreviewed
CVE-2017-8051 was published May 13, 2022
Tuleap before 9.7 allows command injection via the PhpWiki 1.3.10 SyntaxHighlighter plugin. This... High Unreviewed
CVE-2017-7981 was published May 13, 2022
In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition 5.x through 5.2.17, OS... High Unreviewed
CVE-2017-7414 was published May 13, 2022
In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition through 5.2.17, OS... High Unreviewed
CVE-2017-7413 was published May 13, 2022
An OS Command Injection vulnerability in Fortinet FortiWLC 6.1-2 through 6.1-5, 7.0-7 through 7.0... High Unreviewed
CVE-2017-7341 was published May 13, 2022
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute... High Unreviewed
CVE-2017-6970 was published May 13, 2022
A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower... High Unreviewed
CVE-2017-6601 was published May 13, 2022
A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower... High Unreviewed
CVE-2017-6600 was published May 13, 2022
A vulnerability in the CLI of Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100... Moderate Unreviewed
CVE-2017-6602 was published May 13, 2022
An issue was discovered in Trend Micro InterScan Messaging Security (Virtual Appliance) 9.1-1600.... High Unreviewed
CVE-2017-6398 was published May 13, 2022
QNAP QTS before 4.2.4 Build 20170313 allows attackers to execute arbitrary commands via... Critical Unreviewed
CVE-2017-6361 was published May 13, 2022
QNAP QTS before 4.2.4 Build 20170313 allows attackers to gain administrator privileges and... Critical Unreviewed
CVE-2017-6359 was published May 13, 2022
QNAP QTS before 4.2.4 Build 20170313 allows attackers to gain administrator privileges and obtain... Critical Unreviewed
CVE-2017-6360 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database