Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

1,267 advisories

Loading
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an... Critical Unreviewed
CVE-2019-5127 was published May 24, 2022
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an... Critical Unreviewed
CVE-2019-5129 was published May 24, 2022
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an... Critical Unreviewed
CVE-2019-5128 was published May 24, 2022
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow externalPort OS Command... Critical Unreviewed
CVE-2019-13649 was published May 24, 2022
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow portMappingProtocol OS Command... Critical Unreviewed
CVE-2019-13651 was published May 24, 2022
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow internalPort OS Command... Critical Unreviewed
CVE-2019-13650 was published May 24, 2022
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow serviceName OS Command... Critical Unreviewed
CVE-2019-13652 was published May 24, 2022
TP-Link M7350 devices through 1.0.16 Build 181220 Rel.1116n allow triggerPort OS Command... Critical Unreviewed
CVE-2019-13653 was published May 24, 2022
** DISPUTED ** An issue was discovered in SageMath Sage Cell Server through 2019-10-05. Python... Critical Unreviewed
CVE-2019-17526 was published May 24, 2022
Rambox RCE Vulnerability Critical
CVE-2019-17625 was published for Rambox (npm) May 24, 2022
D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS... Critical Unreviewed
CVE-2019-17510 was published May 24, 2022
D-Link DIR-846 devices with firmware 100A35 allow remote attackers to execute arbitrary OS... Critical Unreviewed
CVE-2019-17509 was published May 24, 2022
On D-Link DIR-859 A3-1.06 and DIR-850 A1.13 devices, /etc/services/DEVICE.TIME.php allows command... Critical Unreviewed
CVE-2019-17508 was published May 24, 2022
A shell injection vulnerability on the Sophos Cyberoam firewall appliance with CyberoamOS before... Critical Unreviewed
CVE-2019-17059 was published May 24, 2022
SITOS six Build v6.2.1 allows an attacker to inject arbitrary PHP commands. As a result, an... Critical Unreviewed
CVE-2019-15746 was published May 24, 2022
MyBuilder viewer before 6.2.2019.814 allow an attacker to execute arbitrary command via... Critical Unreviewed
CVE-2019-12812 was published May 24, 2022
ActiveX Control in MyBuilder before 6.2.2019.814 allow an attacker to execute arbitrary command... Critical Unreviewed
CVE-2019-12811 was published May 24, 2022
Intellian Remote Access 3.18 allows remote attackers to execute arbitrary OS commands via shell... Critical Unreviewed
CVE-2019-17269 was published May 24, 2022
Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR... Critical Unreviewed
CVE-2019-16920 was published May 24, 2022
D-Link DIR-806 devices allow remote attackers to execute arbitrary shell commands via a trailing... Critical Unreviewed
CVE-2019-10891 was published May 24, 2022
cgi-cpn/xcoding/prontus_videocut.cgi in AltaVoz Prontus (aka ProntusCMS) through 12.0.3.0 has ... Critical Unreviewed
CVE-2019-15503 was published May 24, 2022
An issue was discovered in Webmin through 1.920. The parameter old in password_change.cgi... Critical Unreviewed
CVE-2019-15107 was published May 24, 2022
An issue was discovered on NETGEAR Nighthawk M1 (MR1100) devices before 12.06.03. System commands... Critical Unreviewed
CVE-2019-14527 was published May 24, 2022
The web-based configuration interface of the TP-Link M7350 V3 with firmware before 190531 is... Critical Unreviewed
CVE-2019-12103 was published May 24, 2022
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An... Critical Unreviewed
CVE-2019-14699 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database