Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,100 advisories

Loading
Grandstream GWN7000 before 1.0.6.32 and GWN7610 before 1.0.8.18 devices allow remote... Moderate Unreviewed
CVE-2019-10657 was published May 13, 2022
Shell Metacharacter Injection in the package installer on Zyxel NAS 326 version 5.21 and below... High Unreviewed
CVE-2019-10631 was published May 13, 2022
In some Lenovo ThinkServer-branded servers, a command injection vulnerability exists in the BMC... High Unreviewed
CVE-2018-9086 was published May 13, 2022
The web interface on FASTGate Fastweb devices with firmware through 0.00.47_FW_200_Askey 2017-05... Critical Unreviewed
CVE-2018-20122 was published May 13, 2022
IBM WebSphere MQ 8.0.0.0 through 9.1.1 could allow a local user to inject code that could be... High Unreviewed
CVE-2018-1998 was published May 13, 2022
D-Link DIR-846 devices with firmware 100.26 allow remote attackers to execute arbitrary code as... High Unreviewed
CVE-2018-16408 was published May 13, 2022
A system command injection vulnerability in zyshclient in ZyXEL NSA325 V2 version 4.81 allows... High Unreviewed
CVE-2018-14893 was published May 13, 2022
Pydio 4.2.1 through 8.2.1 has an authenticated remote code execution vulnerability in which an... High Unreviewed
CVE-2018-14772 was published May 13, 2022
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote... Critical Unreviewed
CVE-2018-14357 was published May 13, 2022
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote... Critical Unreviewed
CVE-2018-14354 was published May 13, 2022
The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build... High Unreviewed
CVE-2018-12577 was published May 13, 2022
Dell EMC ScaleIO versions prior to 2.5, contain a command injection vulnerability in the Light... High Unreviewed
CVE-2018-1238 was published May 13, 2022
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3,... Moderate Unreviewed
CVE-2018-1242 was published May 13, 2022
In order to perform actions that require higher privileges, the Quest KACE System Management... High Unreviewed
CVE-2018-11132 was published May 13, 2022
A vulnerability in the command-line interface (CLI) in the Cisco SD-WAN Solution could allow an... High Unreviewed
CVE-2018-0433 was published May 13, 2022
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2018-15368 was published May 13, 2022
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2018-0477 was published May 13, 2022
A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall... High Unreviewed
CVE-2018-0424 was published May 13, 2022
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local... High Unreviewed
CVE-2018-0481 was published May 13, 2022
A vulnerability in the Cisco SD-WAN Solution could allow an authenticated, remote attacker to... Critical Unreviewed
CVE-2018-0349 was published May 13, 2022
A vulnerability in the CLI of the Cisco SD-WAN Solution could allow an authenticated, remote... High Unreviewed
CVE-2018-0348 was published May 13, 2022
A vulnerability in the CronJob scheduler API of Cisco Digital Network Architecture (DNA) Center... High Unreviewed
CVE-2018-0427 was published May 13, 2022
A vulnerability in the CLI parser of Cisco Network Services Orchestrator (NSO) could allow an... High Unreviewed
CVE-2018-0274 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2018-0307 was published May 13, 2022
A vulnerability in the CLI parser of Cisco NX-OS Software could allow an authenticated, local... High Unreviewed
CVE-2018-0306 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database