GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
30 advisories
Filter by severity
An issue was discovered in ZZZCMS zzzphp V1.6.1. In the inc/zzz_template.php file, the...
High
Unreviewed
CVE-2019-9041
was published
May 13, 2022
Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection.
High
Unreviewed
CVE-2018-16621
was published
May 13, 2022
A actionselectcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7173
was published
May 24, 2022
A thirdpartyperfselecttask expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7179
was published
May 24, 2022
A viewtaskresultdetailfact expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7176
was published
May 24, 2022
A mediaforaction expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7178
was published
May 24, 2022
A soapconfigcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7174
was published
May 24, 2022
A forwardredirect expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7183
was published
May 24, 2022
A wmiconfigcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7177
was published
May 24, 2022
A ictexpertdownload expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7180
was published
May 24, 2022
A smsrulesdownload expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7181
was published
May 24, 2022
A sshconfig expression language injection remote code execution vulnerability was discovered in...
High
Unreviewed
CVE-2020-7182
was published
May 24, 2022
A iccselectdymicparam expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7175
was published
May 24, 2022
A faultflasheventselectfact expression language injectionremote code execution vulnerability was...
High
Unreviewed
CVE-2020-7189
was published
May 24, 2022
A reportpage index expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7187
was published
May 24, 2022
A ictexpertcsvdownload expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7193
was published
May 24, 2022
A viewbatchtaskresultdetailfact expression language injection remote code execution vulnerability...
High
Unreviewed
CVE-2020-7184
was published
May 24, 2022
A tvxlanlegend expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7185
was published
May 24, 2022
A devsoftsel expression language injection remote code execution vulnerability was discovered in...
High
Unreviewed
CVE-2020-7191
was published
May 24, 2022
A devicethresholdconfig expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7192
was published
May 24, 2022
A userselectpagingcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7188
was published
May 24, 2022
A deviceselect expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7190
was published
May 24, 2022
A powershellconfigcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7186
was published
May 24, 2022
A iccselectrules expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7195
was published
May 24, 2022
A perfaddormoddevicemonitor expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7194
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API