Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,873
Erlang
37
GitHub Actions
36
Go
2,519
Maven
5,000+
npm
4,156
NuGet
736
pip
3,957
Pub
12
RubyGems
946
Rust
1,027
Swift
39
Unreviewed advisories
All unreviewed
5,000+

3,952 advisories

Loading
TOTOLINK EX1200T V4.1.2cu.5215 is affected by a command injection vulnerability that can remotely... Critical Unreviewed
CVE-2021-42872 was published Jun 3, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1315 was published May 24, 2022
On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi allows OS command... High Unreviewed
CVE-2021-3149 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1314 was published May 24, 2022
Sage X3 System CHAINE Variable Script Command Injection. An authenticated user with developer... High Unreviewed
CVE-2020-7389 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1147 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W,... High Unreviewed
CVE-2021-1146 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016,... High Unreviewed
CVE-2021-1318 was published May 24, 2022
In Apache SpamAssassin before 3.4.5, malicious rule configuration (.cf) files can be configured... Critical Unreviewed
CVE-2020-1946 was published May 24, 2022
A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker... High Unreviewed
CVE-2021-1514 was published May 24, 2022
A vulnerability in the web-based management interface of Cisco Secure Network Analytics,... Critical Unreviewed
CVE-2022-20797 was published May 28, 2022
A vulnerability in the upgrade process of Cisco Adaptive Security Appliance (ASA) Software and... High Unreviewed
CVE-2021-1488 was published May 24, 2022
OS Command Injection in gitsome High
CVE-2021-34081 was published for gitsome (npm) Jun 3, 2022
The web console for Mimosa B5, B5c, and C5x firmware through 2.8.0.2 allows authenticated command... High Unreviewed
CVE-2020-25206 was published May 24, 2022
Dell EMC PowerStore versions 2.0.0.x, 2.0.1.x, and 2.1.0.x are vulnerable to a command injection... High Unreviewed
CVE-2022-26868 was published Jun 3, 2022
A remote command execution vulnerability exists in add_server_service of PPTP_SERVER in Mercury... Critical Unreviewed
CVE-2020-22724 was published May 24, 2022
Command injection in google-it High
CVE-2021-34083 was published for google-it (npm) Jun 3, 2022
A Command Injection vulnerability in httpd web server (setup.cgi) in SerComm h500s, FW: lowi... High Unreviewed
CVE-2021-44080 was published Jun 3, 2022
A vulnerability was found in OpenNetAdmin 18.1.1. It has been rated as critical. Affected by this... Critical Unreviewed
CVE-2019-25065 was published Jun 10, 2022
Numara FootPrints 7.5a through 7.5a1 and 8.0 through 8.0a allows remote attackers to execute... High Unreviewed
CVE-2008-7158 was published May 17, 2022
An command injection vulnerability in HNAP1/SetWLanApcliSettings of Motorola CX2 router CX 1.0.2... Critical Unreviewed
CVE-2020-21937 was published May 24, 2022
A vulnerability in Cisco IOx application hosting environment of Cisco IOS XE Software could allow... High Unreviewed
CVE-2021-1384 was published May 24, 2022
A command injection vulnerability in Avaya Session Border Controller for Enterprise could allow... High Unreviewed
CVE-2020-7034 was published May 24, 2022
An exploitable unatuhenticated command injection exists in the OpenClinic GA 5.173.3. Specially... Critical Unreviewed
CVE-2020-27227 was published May 24, 2022
The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, ... High Unreviewed
CVE-2021-24312 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database