GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,136

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

3,002 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is... Moderate Unreviewed

CVE-2014-9622 was published May 17, 2022

In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80... Critical Unreviewed

CVE-2017-4984 was published May 17, 2022

The asset discovery scanner in AlienVault OSSIM before 5.0.1 allows remote authenticated users to... High Unreviewed

CVE-2015-4046 was published May 17, 2022

The devtools.sh script in AXIS network cameras allows remote authenticated users to execute... High Unreviewed

CVE-2015-8257 was published May 17, 2022

A command injection vulnerability in Juniper Networks NorthStar Controller Application prior to... Moderate Unreviewed

CVE-2017-2324 was published May 17, 2022

In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when... Critical Unreviewed

CVE-2017-7722 was published May 17, 2022

setroubleshoot allows local users to bypass an intended container protection mechanism and... High Unreviewed

CVE-2016-4989 was published May 17, 2022

The allow_execstack plugin for setroubleshoot allows local users to execute arbitrary commands by... High Unreviewed

CVE-2016-4446 was published May 17, 2022

The fix_lookup_id function in sealert in setroubleshoot before 3.2.23 allows local users to... High Unreviewed

CVE-2016-4445 was published May 17, 2022

The allow_execmod plugin for setroubleshoot before 3.2.23 allows local users to execute arbitrary... High Unreviewed

CVE-2016-4444 was published May 17, 2022

Synology Photo Station before 6.3-2958 allows remote authenticated guest users to execute... High Unreviewed

CVE-2016-10322 was published May 17, 2022

Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection. High Unreviewed

CVE-2016-5067 was published May 17, 2022

Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command... Critical Unreviewed

CVE-2016-5065 was published May 17, 2022

Opmantek NMIS before 4.3.7c has command injection via man, finger, ping, trace, and nslookup in... High Unreviewed

CVE-2016-6534 was published May 17, 2022

Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)... Critical Unreviewed

CVE-2016-10312 was published May 17, 2022

Huawei OceanStor 5600 V3 with V300R003C00C10 and earlier versions allows attackers with... High Unreviewed

CVE-2016-8801 was published May 17, 2022

The _httpsrequest function in Snoopy allows remote attackers to execute arbitrary commands. NOTE... Critical Unreviewed

CVE-2008-7313 was published May 17, 2022

Snoopy allows remote attackers to execute arbitrary commands. Critical Unreviewed

CVE-2014-5008 was published May 17, 2022

In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's configuration utilities... High Unreviewed

CVE-2017-6183 was published May 17, 2022

In Sophos Web Appliance (SWA) before 4.3.1.2, a section of the machine's interface responsible... Moderate Unreviewed

CVE-2017-6184 was published May 17, 2022

Unquoted executable path vulnerability in Client Management and Gateway components in McAfee (now... High Unreviewed

CVE-2015-8988 was published May 17, 2022

Command injection vulnerability in Junos Space before 15.2R2 allows attackers to execute... High Unreviewed

CVE-2016-4929 was published May 17, 2022

A command-injection vulnerability exists in a web application on a custom-built GoAhead web... High Unreviewed

CVE-2017-5675 was published May 17, 2022

An issue was discovered in Tesla Motors Model S automobile, all firmware versions before version... Moderate Unreviewed

CVE-2016-9337 was published May 17, 2022

The Sophos Web Appliance Remote / Secure Web Gateway server (version 4.2.1.3) is vulnerable to a... High Unreviewed

CVE-2016-9554 was published May 17, 2022

Previous 1…27…121 Next

Previous 1 2 … 25 26 27 28 29 … 120 121 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,002 advisories