Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,102 advisories

Loading
Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code... High Unreviewed
CVE-2014-2967 was published May 17, 2022
logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103)... High Unreviewed
CVE-2014-2959 was published May 17, 2022
Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via... Moderate Unreviewed
CVE-2014-3883 was published May 17, 2022
The uploadFile function in upload/index.php in CosCMS before 1.822 allows remote administrators... High Unreviewed
CVE-2013-1668 was published May 17, 2022
The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote... High Unreviewed
CVE-2012-1166 was published May 17, 2022
The CGI component in Cybozu Garoon 3.1.0 through 3.7 SP3 allows remote attackers to execute... High Unreviewed
CVE-2014-1987 was published May 17, 2022
The management console on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows... High Unreviewed
CVE-2014-4868 was published May 17, 2022
FUJITSU F-12C, ARROWS Tab LTE F-01D, ARROWS Kiss F-03D, and REGZA Phone T-01D for Android allows... High Unreviewed
CVE-2014-7253 was published May 17, 2022
IP-COM M50 V15.11.0.33(10768) was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-45711 was published Dec 23, 2022
ASUS JAPAN RT-AC87U routers with firmware 3.0.0.4.378.3754 and earlier, RT-AC68U routers with... Moderate Unreviewed
CVE-2014-7269 was published May 17, 2022
A command injection vulnerability exists in Rocket.Chat-Desktop <3.8.14 that could allow an... Critical Unreviewed
CVE-2022-44567 was published Dec 23, 2022
Network Vision IntraVue before 2.3.0a14 on Windows allows remote attackers to execute arbitrary... High Unreviewed
CVE-2015-0977 was published May 17, 2022
The "RAP console" feature in ArubaOS 5.x through 6.2.x, 6.3.x before 6.3.1.15, and 6.4.x before 6... High Unreviewed
CVE-2015-1388 was published May 17, 2022
The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and earlier,... High Unreviewed
CVE-2014-9284 was published May 17, 2022
Webservice-DIC yoyaku_v41 allows remote attackers to execute arbitrary OS commands via... High Unreviewed
CVE-2015-2979 was published May 17, 2022
The "go get" implementation in Go 1.9.4, when the -insecure command-line option is used, does not... High Unreviewed
CVE-2018-7187 was published May 14, 2022
The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x... High Unreviewed
CVE-2015-4718 was published May 17, 2022
eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal (aka eventapp) web application before 2015... Moderate Unreviewed
CVE-2015-5673 was published May 17, 2022
The Web Console in Commvault Edge Server 10 R2 allows remote attackers to execute arbitrary OS... High Unreviewed
CVE-2015-7253 was published May 17, 2022
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands... High Unreviewed
CVE-2015-7698 was published May 17, 2022
TYPE-MOON Fate/stay night, Fate/hollow ataraxia, Witch on the Holy Night, and Fate/stay night +... High Unreviewed
CVE-2015-5672 was published May 17, 2022
The Management I/O (MIO) component in Cisco Firepower Extensible Operating System 1.1(1.160) on... High Unreviewed
CVE-2015-6370 was published May 17, 2022
OS Command Injection in proctree High
CVE-2021-34082 was published for proctree (npm) Jun 3, 2022
An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.1(1... Moderate Unreviewed
CVE-2015-6380 was published May 17, 2022
The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual... Critical Unreviewed
CVE-2015-7426 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database