GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
949 advisories
Filter by severity
A vulnerability in the local CLI of the Cisco SD-WAN Solution could allow an authenticated, local...
High
Unreviewed
CVE-2019-1646
was published
May 13, 2022
GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via...
High
Unreviewed
CVE-2014-7208
was published
May 13, 2022
rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a...
High
Unreviewed
CVE-2019-1000018
was published
May 13, 2022
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.
High
Unreviewed
CVE-2014-9114
was published
May 13, 2022
Apache Directory Studio Command Injection
High
CVE-2015-5349
was published
for
org.apache.directory.studio:org.apache.directory.studio.ldapbrowser.core
(Maven)
May 13, 2022
The handle_certificate function in /vmi/manager/engine/management/commands/apns_worker.py in...
High
Unreviewed
CVE-2016-6270
was published
May 13, 2022
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly...
High
Unreviewed
CVE-2014-3524
was published
May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the...
High
Unreviewed
CVE-2017-2833
was published
May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the...
High
Unreviewed
CVE-2017-2832
was published
May 13, 2022
An exploitable command execution vulnerability exists in Information Builders WebFOCUS Business...
High
Unreviewed
CVE-2016-9044
was published
May 13, 2022
IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute...
High
Unreviewed
CVE-2022-22454
was published
May 11, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated...
High
Unreviewed
CVE-2022-27224
was published
May 10, 2022
Command injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information...
High
Unreviewed
CVE-2022-23332
was published
May 10, 2022
A command injection vulnerability has been reported to affect QNAP NAS running QuTScloud, QuTS...
High
Unreviewed
CVE-2021-44051
was published
May 6, 2022
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP Advanced WAF,...
High
Unreviewed
CVE-2022-27806
was published
May 6, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers...
High
Unreviewed
CVE-2021-43160
was published
May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers...
High
Unreviewed
CVE-2021-43159
was published
May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers...
High
Unreviewed
CVE-2021-43162
was published
May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers...
High
Unreviewed
CVE-2021-43161
was published
May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers...
High
Unreviewed
CVE-2021-43164
was published
May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and...
High
Unreviewed
CVE-2022-20801
was published
May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and...
High
Unreviewed
CVE-2022-20799
was published
May 5, 2022
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in ...
High
Unreviewed
CVE-2022-28572
was published
May 3, 2022
OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for...
High
Unreviewed
CVE-2010-0136
was published
May 2, 2022
PHP remote file inclusion vulnerability in welcome.php in phpLDAPadmin 0.9.6 and 0.9.7 allows...
High
Unreviewed
CVE-2005-2793
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API