Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

949 advisories

Loading
A vulnerability in the local CLI of the Cisco SD-WAN Solution could allow an authenticated, local... High Unreviewed
CVE-2019-1646 was published May 13, 2022
GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via... High Unreviewed
CVE-2014-7208 was published May 13, 2022
rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a... High Unreviewed
CVE-2019-1000018 was published May 13, 2022
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code. High Unreviewed
CVE-2014-9114 was published May 13, 2022
Apache Directory Studio Command Injection High
CVE-2015-5349 was published for org.apache.directory.studio:org.apache.directory.studio.ldapbrowser.core (Maven) May 13, 2022
The handle_certificate function in /vmi/manager/engine/management/commands/apns_worker.py in... High Unreviewed
CVE-2016-6270 was published May 13, 2022
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly... High Unreviewed
CVE-2014-3524 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2833 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2832 was published May 13, 2022
An exploitable command execution vulnerability exists in Information Builders WebFOCUS Business... High Unreviewed
CVE-2016-9044 was published May 13, 2022
IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute... High Unreviewed
CVE-2022-22454 was published May 11, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed
CVE-2022-27224 was published May 10, 2022
Command injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information... High Unreviewed
CVE-2022-23332 was published May 10, 2022
A command injection vulnerability has been reported to affect QNAP NAS running QuTScloud, QuTS... High Unreviewed
CVE-2021-44051 was published May 6, 2022
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP Advanced WAF,... High Unreviewed
CVE-2022-27806 was published May 6, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43160 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43159 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43162 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43161 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43164 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20801 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20799 was published May 5, 2022
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in ... High Unreviewed
CVE-2022-28572 was published May 3, 2022
OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for... High Unreviewed
CVE-2010-0136 was published May 2, 2022
PHP remote file inclusion vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7 allows... High Unreviewed
CVE-2005-2793 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API