GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,421

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,267 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

PHKP including commit 88fd9cfdf14ea4b6ac3e3967feea7bcaabb6f03b is affected by: Improper... Critical Unreviewed

CVE-2019-1010179 was published May 24, 2022

Voice Builder Prior to commit c145d4604df67e6fc625992412eef0bf9a85e26b and... Critical Unreviewed

CVE-2019-1010200 was published May 24, 2022

Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue... Critical Unreviewed

CVE-2019-12725 was published May 24, 2022

Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input... Critical Unreviewed

CVE-2019-12988 was published May 24, 2022

Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input... Critical Unreviewed

CVE-2019-12986 was published May 24, 2022

Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input... Critical Unreviewed

CVE-2019-12987 was published May 24, 2022

Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input... Critical Unreviewed

CVE-2019-12985 was published May 24, 2022

LuaUPnP in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute... Critical Unreviewed

CVE-2019-13598 was published May 24, 2022

_s_/sprm/_s_/dyn/Player_setScriptFile in Sahi Pro 8.0.0 allows command execution. It allows one... Critical Unreviewed

CVE-2019-13597 was published May 24, 2022

The SUNNET WMPro v5.0 and v5.1 for eLearning system has OS Command Injection via "/teach/course... Critical Unreviewed

CVE-2019-11062 was published May 24, 2022

Vivotek FD8136 devices allow Remote Command Injection, aka "another command injection... Critical Unreviewed

CVE-2018-14495 was published May 24, 2022

Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. Critical Unreviewed

CVE-2018-14494 was published May 24, 2022

OS command injection vulnerability in drivers_syno_import_user.php in Synology Calendar before 2... Critical Unreviewed

CVE-2019-11829 was published May 24, 2022

Western Digital WD My Book Live (all versions) has a root Remote Command Execution bug via shell... Critical Unreviewed

CVE-2018-18472 was published May 24, 2022

VTech Storio Max before 56.D3JM6 allows remote command execution via shell metacharacters in an... Critical Unreviewed

CVE-2018-16618 was published May 24, 2022

All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by command execution... Critical Unreviewed

CVE-2019-3412 was published May 24, 2022

HooToo TripMate Titan HT-TM05 and HT-05 routers with firmware 2.000.022 and 2.000.082 allow... Critical Unreviewed

CVE-2018-20841 was published May 24, 2022

The Belkin Wemo Enabled Crock-Pot allows command injection in the Wemo UPnP API via the... Critical Unreviewed

CVE-2019-12780 was published May 24, 2022

Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi... Critical Unreviewed

CVE-2019-12771 was published May 24, 2022

A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient... Critical Unreviewed

CVE-2019-10149 was published May 24, 2022

Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an... Critical Unreviewed

CVE-2019-12585 was published May 24, 2022

Citrix SD-WAN Center 10.2.x before 10.2.1 and NetScaler SD-WAN Center 10.0.x before 10.0.7 allow... Critical Unreviewed

CVE-2019-10883 was published May 24, 2022

NUUO Network Video Recorder Firmware 1.7.x through 3.3.x allows unauthenticated attackers to... Critical Unreviewed

CVE-2019-9653 was published May 24, 2022

In OpenWrt LuCI through 0.10, the endpoints admin/status/realtime/bandwidth_status and admin... Critical Unreviewed

CVE-2019-12272 was published May 24, 2022

RSA Netwitness Platform versions prior to 11.2.1.1 and RSA Security Analytics versions prior to... Critical Unreviewed

CVE-2019-3725 was published May 24, 2022

Previous 1…36…51 Next

Previous 1 2 … 34 35 36 37 38 … 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,267 advisories