Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

99 advisories

Loading
Invalid input sanitizing leads to reflected Cross Site Scripting (XSS) in ASUS RT-AC52U_B1 3.0.0... Moderate Unreviewed
CVE-2021-46109 was published Jan 4, 2022
ASUS RT-AX56U’s login function contains a path traversal vulnerability due to its inadequate... Moderate Unreviewed
CVE-2022-22054 was published Jan 15, 2022
ASUS RT-AC86U has improper user request handling, which allows an unauthenticated LAN attacker to... Moderate Unreviewed
CVE-2022-25595 was published Apr 8, 2022
ASUS RT-AX88U has insufficient filtering for special characters in the HTTP header parameter. A... Moderate Unreviewed
CVE-2022-26673 was published Apr 23, 2022
Directory traversal vulnerability in the web server in Asus Video Security 3.5.0.0 and earlier... Moderate Unreviewed
CVE-2005-3490 was published May 1, 2022
Asus SmartLogon 1.0.0005 allows physically proximate attackers to bypass "security functions" by... Moderate Unreviewed
CVE-2009-0656 was published May 2, 2022
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0... Moderate Unreviewed
CVE-2018-14992 was published May 13, 2022
The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an... Moderate Unreviewed
CVE-2018-18537 was published May 13, 2022
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0... Moderate Unreviewed
CVE-2018-14979 was published May 14, 2022
On ASUS RT-AC58U 3.0.0.4.380_6516 devices, remote attackers can discover hostnames and IP... Moderate Unreviewed
CVE-2018-18287 was published May 14, 2022
A cross site scripting (XSS) vulnerability on ASUS RT-AC58U 3.0.0.4.380_6516 devices allows... Moderate Unreviewed
CVE-2018-18291 was published May 14, 2022
Cross-site scripting (XSS) vulnerability on ASUS GT-AC5300 devices with firmware through 3.0.0.4... Moderate Unreviewed
CVE-2018-17021 was published May 14, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Asus RT-N10+ D1 router with firmware 2.1.1... Moderate Unreviewed
CVE-2015-1437 was published May 14, 2022
Cross-site scripting vulnerability in ASUS RT-AC87U Firmware version prior to 3.0.0.4.378.9383... Moderate Unreviewed
CVE-2018-0581 was published May 14, 2022
Cross-site scripting vulnerability in ASUS RT-AC68U Firmware version prior to 3.0.0.4.380.1031... Moderate Unreviewed
CVE-2018-0582 was published May 14, 2022
Cross-site scripting vulnerability in ASUS RT-AC1200HP Firmware version prior to 3.0.0.4.380.4180... Moderate Unreviewed
CVE-2018-0583 was published May 14, 2022
ASUS RT-N14UHP devices before 3.0.0.4.380.8015 have a reflected XSS vulnerability in the "flag"... Moderate Unreviewed
CVE-2017-12590 was published May 14, 2022
Multiple XML external entity (XXE) vulnerabilities in the AiCloud feature on ASUS DSL-AC51, DSL... Moderate Unreviewed
CVE-2017-14699 was published May 14, 2022
ASUS DSL-N10S V2.1.16_APAC devices have reflected and stored cross site scripting, as... Moderate Unreviewed
CVE-2017-12591 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in httpd on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT... Moderate Unreviewed
CVE-2017-6547 was published May 17, 2022
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow remote authenticated... Moderate Unreviewed
CVE-2017-8878 was published May 17, 2022
ASUS RT-AC* and RT-N* devices with firmware through 3.0.0.4.380.7378 allow JSONP Information... Moderate Unreviewed
CVE-2017-8877 was published May 17, 2022
An issue was discovered on the ASUS RT-N56U Wireless Router with Firmware 3.0.0.4.374_979. When... Moderate Unreviewed
CVE-2017-5632 was published May 17, 2022
The ASUS WL-330NUL router has a configuration process that relies on accessing the 192.168.1.1 IP... Moderate Unreviewed
CVE-2013-7293 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the ASUS RT-G32 routers with firmware 2.0... Moderate Unreviewed
CVE-2015-2681 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API