Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,641
Maven
5,000+
npm
4,266
NuGet
760
pip
4,062
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,103 advisories

Loading
Linear eMerge 50P/5000P devices allow Authenticated Command Injection with root Code Execution. Critical Unreviewed
CVE-2019-7269 was published May 24, 2022
A vulnerability in Brocade Fabric OS software v9.1.1, v9.0.1e, v8.2.3c, v7.4.2j, and earlier... Critical Unreviewed
CVE-2022-33186 was published Dec 9, 2022
The web console of FUJITSU Network IPCOM series (IPCOM EX2 IN(3200, 3500), IPCOM EX2 LB(1100,... Critical Unreviewed
CVE-2022-29516 was published May 19, 2022
A command injection vulnerability was reported in some Lenovo Personal Cloud Storage devices that... High Unreviewed
CVE-2021-42852 was published May 19, 2022
spice-vdagent up to and including 0.17.0 does not properly escape save directory before passing... High Unreviewed
CVE-2017-15108 was published May 13, 2022
The papd daemon in Netatalk before 2.0.4-beta2, when using certain variables in a pipe command... High Unreviewed
CVE-2008-5718 was published May 17, 2022
OS Command Injection in GitHub repository yogeshojha/rengine prior to 1.2.0. Critical Unreviewed
CVE-2022-1813 was published May 23, 2022
mailcow before 2022-05d allows a remote authenticated user to inject OS commands and escalate... High Unreviewed
CVE-2022-31245 was published May 21, 2022
An unspecified function in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6... High Unreviewed
CVE-2011-1904 was published May 17, 2022
In Belkin N300 Firmware 1.00.08, the script located at /setting_hidden.asp, which is accessible... Critical Unreviewed
CVE-2022-30105 was published May 19, 2022
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x... High Unreviewed
CVE-2011-0374 was published May 17, 2022
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.6.x... High Unreviewed
CVE-2011-0375 was published May 17, 2022
The XML-RPC implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5... High Unreviewed
CVE-2011-0378 was published May 17, 2022
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x... High Unreviewed
CVE-2011-0372 was published May 17, 2022
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x... High Unreviewed
CVE-2011-0373 was published May 17, 2022
HP no Mawashimono Nikki 6.6 and earlier allows remote attackers to execute arbitrary commands via... High Unreviewed
CVE-2011-4002 was published May 17, 2022
webscript.pl in Open Ticket Request System (OTRS) 2.3.4 and earlier allows remote attackers to... High Unreviewed
CVE-2011-0456 was published May 17, 2022
The CGI subsystem on Cisco TelePresence Recording Server devices with software 1.6.x before 1.6.2... High Unreviewed
CVE-2011-0382 was published May 17, 2022
An ActiveX control in KeyHelp.ocx in KeyWorks KeyHelp Module (aka the HTML Help component), as... High Unreviewed
CVE-2012-2516 was published May 17, 2022
The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4... High Unreviewed
CVE-2012-3075 was published May 17, 2022
The Johnson Controls CK721-A controller with firmware before SSM4388_03.1.0.14_BB allows remote... High Unreviewed
CVE-2012-2607 was published May 17, 2022
The administrative web interface on Cisco TelePresence Recording Server before 1.8.0 allows... High Unreviewed
CVE-2012-3076 was published May 17, 2022
lhn/public/network/ping in HP SAN/iQ 9.5 on the HP Virtual SAN Appliance allows remote... High Unreviewed
CVE-2012-2986 was published May 17, 2022
The client in Novell GroupWise 8.0 before 8.0.3 HP2 and 2012 before SP1 HP1 allows remote... High Unreviewed
CVE-2013-0804 was published May 17, 2022
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25,... High Unreviewed
CVE-2011-4502 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database