Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,103 advisories

Loading
An issue was discovered on Rittal PDU-3C002DEC through 5.17.10 and CMCIII-PU-9333E0FB through 3... High Unreviewed
CVE-2020-11956 was published May 24, 2022
rkscli in Ruckus Wireless Unleashed through 200.7.10.92 allows a remote attacker to achieve... High Unreviewed
CVE-2020-13917 was published May 24, 2022
There is an OS Command Injection in Mida eFramework 2.9.0 that allows an attacker to achieve... High Unreviewed
CVE-2020-15922 was published May 24, 2022
An arbitrary code execution vulnerability exisits in Linksys WRT54GL Wireless-G Broadband Router... High Unreviewed
CVE-2022-43973 was published Jan 9, 2023
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an... Critical Unreviewed
CVE-2021-1138 was published May 24, 2022
emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to... High Unreviewed
CVE-2020-13919 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14437 was published May 24, 2022
wifey vulnerable to Command Injection due to improper input sanitization Critical
CVE-2022-25890 was published for wifey (npm) Jan 9, 2023
CrafterCMS OS Command Injection vulnerability High
CVE-2022-40635 was published for org.craftercms:craftercms (Maven) Sep 14, 2022
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an... High Unreviewed
CVE-2021-1139 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14440 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14442 was published May 24, 2022
QuickBox Community Edition through 2.5.5 and Pro Edition through 2.1.8 allows an authenticated... High Unreviewed
CVE-2020-13448 was published May 24, 2022
Artica Pandora FMS 7.44 allows remote command execution via the events feature. High Unreviewed
CVE-2020-13851 was published May 24, 2022
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an... Critical Unreviewed
CVE-2021-1140 was published May 24, 2022
Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an... High Unreviewed
CVE-2021-1141 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14439 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14438 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14441 was published May 24, 2022
A vulnerability in the CLI of Cisco IOS XE SD-WAN Software and Cisco IOS XE Software could allow... High Unreviewed
CVE-2021-34729 was published May 24, 2022
Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-77:... High Unreviewed
CVE-2019-5623 was published May 24, 2022
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote... Moderate Unreviewed
CVE-2020-8605 was published May 24, 2022
Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. A... Moderate Unreviewed
CVE-2022-34437 was published Oct 21, 2022
elFinder before 2.1.59 contains multiple vulnerabilities leading to RCE Critical
CVE-2021-32682 was published for studio-42/elfinder (Composer) Jun 16, 2021
thomas-chauchefoin-sonarsource
Credited to thomas-chauchefoin-sonarsource
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow... High Unreviewed
CVE-2021-34756 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database