Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,000 advisories

Loading
sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script ... High Unreviewed
CVE-2012-1823 was published May 14, 2022
The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before... Moderate Unreviewed
CVE-2014-4336 was published May 14, 2022
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed
CVE-2017-8135 was published May 14, 2022
A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... Critical Unreviewed
CVE-2022-23663 was published May 17, 2022
A remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system... Critical Unreviewed
CVE-2021-42897 was published May 17, 2022
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local... Moderate Unreviewed
CVE-2017-12339 was published May 17, 2022
QNAP has already patched this vulnerability. This security concern allows a remote attacker to... Critical Unreviewed
CVE-2017-13071 was published May 17, 2022
VCM5010 with software versions earlier before V100R002C50SPC100 has a command injection... High Unreviewed
CVE-2017-2736 was published May 17, 2022
FusionSphere OpenStack V100R006C00SPC102(NFV)has a command injection vulnerability. Due to lack... High Unreviewed
CVE-2017-8188 was published May 17, 2022
FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection... High Unreviewed
CVE-2017-2719 was published May 17, 2022
The FusionSphere OpenStack V100R006C00SPC102(NFV) has a command injection vulnerability. Due to... High Unreviewed
CVE-2017-8193 was published May 17, 2022
FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability. An authenticated,... High Unreviewed
CVE-2017-8197 was published May 17, 2022
The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier... High Unreviewed
CVE-2017-2692 was published May 17, 2022
Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection... High Unreviewed
CVE-2017-8133 was published May 17, 2022
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed
CVE-2017-8131 was published May 17, 2022
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed
CVE-2017-8134 was published May 17, 2022
The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection... High Unreviewed
CVE-2017-8132 was published May 17, 2022
The Net::Ping::External extension through 0.15 for Perl does not properly sanitize arguments (e.g... Critical Unreviewed
CVE-2008-7319 was published May 17, 2022
Eval injection vulnerability in the fm_saveHelperGatherItems function in ajax.php in the Form... Critical Unreviewed
CVE-2015-7806 was published May 17, 2022
An issue was discovered in Cloud Foundry Foundation Cloud Foundry release versions prior to v245... Critical Unreviewed
CVE-2016-6655 was published May 17, 2022
The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2... High Unreviewed
CVE-2014-8517 was published May 17, 2022
Swift Mailer mail transport Command Injection Critical
CVE-2016-10074 was published for swiftmailer/swiftmailer (Composer) May 17, 2022
Module::Signature before 0.74 allows remote attackers to execute arbitrary shell commands via a... High Unreviewed
CVE-2015-3408 was published May 17, 2022
Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute... Critical Unreviewed
CVE-2013-6924 was published May 17, 2022
UI-Dialog 1.09 and earlier allows remote attackers to execute arbitrary commands. Critical Unreviewed
CVE-2008-7315 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database