Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

542 advisories

Loading
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could... Moderate Unreviewed
CVE-2023-20153 was published Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could... Moderate Unreviewed
CVE-2023-20023 was published Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could... Moderate Unreviewed
CVE-2023-20022 was published Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could... Moderate Unreviewed
CVE-2023-20152 was published Apr 5, 2023
Multiple vulnerabilities in specific Cisco Identity Services Engine (ISE) CLI commands could... Moderate Unreviewed
CVE-2023-20021 was published Apr 5, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43626 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43627 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43628 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43624 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43631 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43632 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43629 was published Mar 29, 2023
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... Moderate Unreviewed
CVE-2022-43633 was published Mar 29, 2023
Vulnerability in the CLI of Cisco Secure Email Gateway could allow an authenticated, remote... Moderate Unreviewed
CVE-2023-20075 was published Mar 1, 2023
A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security... Moderate Unreviewed
CVE-2023-20015 was published Feb 23, 2023
In cmd services, there is a OS command injection issue due to missing permission check. This... Moderate Unreviewed
CVE-2022-47339 was published Feb 12, 2023
Command injection in Rancher Git package Moderate
CVE-2022-43758 was published for github.com/rancher/rancher (Go) Jan 25, 2023
cokeBeer snoopysecurity
Credited to cokeBeer and snoopysecurity
Buffalo network devices WSR-3200AX4S firmware Ver. 1.26 and earlier, WSR-3200AX4B firmware Ver. 1... Moderate Unreviewed
CVE-2022-43466 was published Dec 19, 2022
PAX Technology A930 PayDroid 7.1.1 Virgo V04.4.02 20211201 was discovered to be vulnerable to... Moderate Unreviewed
CVE-2022-26580 was published Dec 17, 2022
Snyk plugins vulnerable to Command Injection Moderate
CVE-2022-22984 was published for @snyk/snyk-cocoapods-plugin (npm) Nov 30, 2022
OS Command Injection in Apache Airflow Moderate
CVE-2022-40954 was published for apache-airflow (pip) Nov 22, 2022
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS... Moderate Unreviewed
CVE-2022-20934 was published Nov 16, 2022
SAP GUI allows an authenticated attacker to execute scripts in the local network. On successful... Moderate Unreviewed
CVE-2022-41205 was published Nov 9, 2022
"IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability... Moderate Unreviewed
CVE-2022-35642 was published Nov 4, 2022
Multiple command injection vulnerabilities in GL.iNet GoodCloud IoT Device Management System... Moderate Unreviewed
CVE-2022-42055 was published Oct 27, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database