GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,442

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,267 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... Critical Unreviewed

CVE-2022-23663 was published May 17, 2022

A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... Critical Unreviewed

CVE-2022-23661 was published May 17, 2022

Qt for Android prior to 5.9.0 allows remote attackers to execute arbitrary OS commands via... Critical Unreviewed

CVE-2017-10904 was published May 14, 2022

Nootka 1.4.4 and earlier allows remote attackers to execute arbitrary OS commands via unspecified... Critical Unreviewed

CVE-2018-0506 was published May 14, 2022

Security Onion Solutions Squert version 1.0.1 through 1.6.7 contains a CWE-78: Improper... Critical Unreviewed

CVE-2018-1000043 was published May 14, 2022

Security Onion Solutions Squert version 1.3.0 through 1.6.7 contains a CWE-78: Improper... Critical Unreviewed

CVE-2018-1000042 was published May 14, 2022

MP Form Mail CGI eCommerce Edition Ver 2.0.13 and earlier allows remote attackers to execute... Critical Unreviewed

CVE-2018-0514 was published May 14, 2022

An issue was discovered in ClipBucket before 4.0.0 Release 4902. Any OS commands can be injected... Critical Unreviewed

CVE-2018-7664 was published May 14, 2022

QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier allows... Critical Unreviewed

CVE-2017-7640 was published May 14, 2022

QQQ SYSTEMS version 2.24 allows an attacker to execute arbitrary commands via unspecified vectors. Critical Unreviewed

CVE-2018-0539 was published May 14, 2022

LXR version 1.0.0 to 2.3.0 allows remote attackers to execute arbitrary OS commands via... Critical Unreviewed

CVE-2018-0545 was published May 14, 2022

All Phoenix Contact managed FL SWITCH 3xxx, 4xxx, 48xx products running firmware version 1.0 to 1... Critical Unreviewed

CVE-2018-10730 was published May 14, 2022

Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability.... Critical Unreviewed

CVE-2018-4924 was published May 14, 2022

Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. Successful... Critical Unreviewed

CVE-2018-4923 was published May 14, 2022

QNAP NAS application Proxy Server through version 1.2.0 allows remote attackers to run arbitrary... Critical Unreviewed

CVE-2017-7637 was published May 14, 2022

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed

CVE-2017-17411 was published May 14, 2022

OS command injection in the AP mode settings feature in /cgi-bin/luci /api/misystem... Critical Unreviewed

CVE-2018-14060 was published May 14, 2022

OS command injection in the guest Wi-Fi settings feature in /cgi-bin/luci on Xiaomi R3P before 2... Critical Unreviewed

CVE-2018-14010 was published May 14, 2022

A command injection vulnerability was found in the web administration console in SoftNAS Cloud... Critical Unreviewed

CVE-2018-14417 was published May 14, 2022

cgi-bin/mft/wireless_mft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026... Critical Unreviewed

CVE-2014-8389 was published May 14, 2022

cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025... Critical Unreviewed

CVE-2015-2279 was published May 14, 2022

myStrom WiFi Switch V1 devices before 2.66 did not sanitize a parameter received from the cloud... Critical Unreviewed

CVE-2018-15477 was published May 14, 2022

An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated... Critical Unreviewed

CVE-2018-15484 was published May 14, 2022

Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS... Critical Unreviewed

CVE-2018-17532 was published May 14, 2022

An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and... Critical Unreviewed

CVE-2018-19081 was published May 14, 2022

Previous 1…39…51 Next

Previous 1 2 … 37 38 39 40 41 … 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,267 advisories