Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,071 advisories

Loading
Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper... Critical Unreviewed
CVE-2018-1000802 was published May 13, 2022
An issue was discovered on the D-Link DWR-932B router. qmiweb allows command injection with `... Critical Unreviewed
CVE-2016-10182 was published May 13, 2022
A Command Injection vulnerability in Schneider Electric homeLYnk Controller exists in all... Critical Unreviewed
CVE-2017-7689 was published May 13, 2022
An exploitable command injection vulnerability exists in the DHCP daemon configuration of the... Critical Unreviewed
CVE-2018-3963 was published May 13, 2022
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via... Critical Unreviewed
CVE-2022-29303 was published May 13, 2022
A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link... Critical Unreviewed
CVE-2022-28896 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28907 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28906 was published May 11, 2022
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-28915 was published May 11, 2022
A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882... Critical Unreviewed
CVE-2022-28901 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28913 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28910 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28911 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28909 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28908 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28905 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28912 was published May 11, 2022
A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882... Critical Unreviewed
CVE-2022-28895 was published May 11, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Critical Unreviewed
CVE-2022-26415 was published May 6, 2022
We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build... Critical Unreviewed
CVE-2022-27588 was published May 6, 2022
It is found that there is a command injection vulnerability in the setopenvpnclientcfg interface... Critical Unreviewed
CVE-2022-28575 was published May 6, 2022
It is found that there is a command injection vulnerability in the setL2tpServerCfg interface in... Critical Unreviewed
CVE-2022-28580 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiSignalCfg interface in... Critical Unreviewed
CVE-2022-28582 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiAdvancedCfg interface... Critical Unreviewed
CVE-2022-28581 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiWpsStart interface in... Critical Unreviewed
CVE-2022-28584 was published May 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database