GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
738 advisories
Filter by severity
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability via the...
Critical
Unreviewed
CVE-2022-34597
was published
Jul 7, 2022
An access control issue in Ingredient Stock Management System v1.0 allows attackers to take over...
Critical
Unreviewed
CVE-2022-32310
was published
Jul 6, 2022
Tenda AX1803 v1.0.0.1_2890 was discovered to contain a command injection vulnerability via the...
Critical
Unreviewed
CVE-2022-34595
was published
Jul 7, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35522
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 api.cgi has no filtering on parameter ufconf...
Critical
Unreviewed
CVE-2022-35520
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameter...
Critical
Unreviewed
CVE-2022-35525
was published
Aug 11, 2022
The _httpsrequest function in Snoopy allows remote attackers to execute arbitrary commands. NOTE...
Critical
Unreviewed
CVE-2008-7313
was published
May 17, 2022
In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when...
Critical
Unreviewed
CVE-2017-7722
was published
May 17, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35521
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35536
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35537
was published
Aug 11, 2022
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command...
Critical
Unreviewed
CVE-2016-5065
was published
May 17, 2022
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80...
Critical
Unreviewed
CVE-2017-4984
was published
May 17, 2022
Snoopy allows remote attackers to execute arbitrary commands.
Critical
Unreviewed
CVE-2014-5008
was published
May 17, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameter...
Critical
Unreviewed
CVE-2022-35519
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 firewall.cgi has no filtering on parameter...
Critical
Unreviewed
CVE-2022-35523
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 qos.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35533
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 adm.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35524
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameter...
Critical
Unreviewed
CVE-2022-35535
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameter...
Critical
Unreviewed
CVE-2022-35534
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 login.cgi has no filtering on parameter key,...
Critical
Unreviewed
CVE-2022-35526
was published
Aug 11, 2022
Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11...
Critical
Unreviewed
CVE-2016-10107
was published
May 17, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 nas.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35518
was published
Aug 11, 2022
WAVLINK WN572HP3, WN533A8, WN530H4, WN535G3, WN531P3 wireless.cgi has no filtering on parameters:...
Critical
Unreviewed
CVE-2022-35538
was published
Aug 11, 2022
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC)...
Critical
Unreviewed
CVE-2016-10312
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API