GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,637
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,107
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,130

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,104 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability in the CLI of Cisco IOS XE SD-WAN Software could allow an authenticated, local... High Unreviewed

CVE-2021-1382 was published May 24, 2022

The vulnerability have been reported to affect earlier versions of QTS. If exploited, this... Critical Unreviewed

CVE-2020-2507 was published May 24, 2022

KLog Server 2.4.1 allows OS command injection via shell metacharacters in the actions... Critical Unreviewed

CVE-2020-35729 was published May 24, 2022

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root... Critical Unreviewed

CVE-2020-15568 was published May 24, 2022

Logstorage version 8.0.0 and earlier, and ELC Analytics version 3.0.0 and earlier allow remote... High Unreviewed

CVE-2020-5626 was published May 24, 2022

Arbitrary command execution can occur in Webmin through 1.962. Any user authorized for the... High Unreviewed

CVE-2020-35606 was published May 24, 2022

An issue was discovered on Western Digital My Cloud NAS devices before 5.04.114. They allow... Critical Unreviewed

CVE-2020-27744 was published May 24, 2022

The reported vulnerability allows an attacker who has network access to the device to execute... Critical Unreviewed

CVE-2020-12522 was published May 24, 2022

An issue was discovered in SolarWinds N-Central 12.3.0.670. The sudo configuration has incorrect... High Unreviewed

CVE-2020-25618 was published May 24, 2022

A command injection vulnerability in the license-check daemon of Juniper Networks Junos OS that... High Unreviewed

CVE-2021-0218 was published May 24, 2022

UNIVERGE SV9500 series from V1 to V7and SV8500 series from S6 to S8 allows an attacker to execute... Critical Unreviewed

CVE-2020-5685 was published May 24, 2022

Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker with an administrative... Moderate Unreviewed

CVE-2020-5636 was published May 24, 2022

Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker on the adjacent network to... High Unreviewed

CVE-2020-5635 was published May 24, 2022

iCMS 7.0.14 attackers to execute arbitrary OS commands via shell metacharacters in the DB_NAME... Critical Unreviewed

CVE-2020-19527 was published May 24, 2022

Network Analysis functionality in Askey AP5100W_Dual_SIG_1.01.097 and all prior versions allows... Critical Unreviewed

CVE-2020-15357 was published May 24, 2022

oal_ipt_addBridgeIsolationRules on TP-Link TL-WR840N 6_EU_0.9.1_4.16 devices allows OS command... Critical Unreviewed

CVE-2020-36178 was published May 24, 2022

Zeroshell 3.9.3 contains a command injection vulnerability in the /cgi-bin/kerbynet... Critical Unreviewed

CVE-2020-29390 was published May 24, 2022

Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote attackers to execute arbitrary... Critical Unreviewed

CVE-2020-35713 was published May 24, 2022

Belkin LINKSYS RE6500 devices before 1.0.012.001 allow remote authenticated users to execute... High Unreviewed

CVE-2020-35715 was published May 24, 2022

Privilege escalation of an authenticated user to root in Citrix SD-WAN center versions before 11... High Unreviewed

CVE-2020-8273 was published May 24, 2022

httpd on TP-Link TL-WPA4220 devices (versions 2 through 4) allows remote authenticated users to... High Unreviewed

CVE-2020-24297 was published May 24, 2022

A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web... High Unreviewed

CVE-2020-3367 was published May 24, 2022

A vulnerability in the web-based management interface of Cisco DNA Spaces Connector could allow... Critical Unreviewed

CVE-2020-3586 was published May 24, 2022

An unprivileged Windows user on the VDA or an SMB user can perform arbitrary command execution as... High Unreviewed

CVE-2020-8270 was published May 24, 2022

A command injection vulnerability in AddVLANItem of Trend Micro InterScan Web Security Virtual... High Unreviewed

CVE-2020-28580 was published May 24, 2022

Previous 1…144…165 Next

Previous 1 2 … 142 143 144 145 146 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,104 advisories