Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,144
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

78 advisories

Loading
A powershellconfigcontent expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7186 was published May 24, 2022
A faultflasheventselectfact expression language injectionremote code execution vulnerability was... High Unreviewed
CVE-2020-7189 was published May 24, 2022
A userselectpagingcontent expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7188 was published May 24, 2022
A forwardredirect expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7183 was published May 24, 2022
A sshconfig expression language injection remote code execution vulnerability was discovered in... High Unreviewed
CVE-2020-7182 was published May 24, 2022
A iccselectdymicparam expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7175 was published May 24, 2022
A smsrulesdownload expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7181 was published May 24, 2022
A wmiconfigcontent expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7177 was published May 24, 2022
A ictexpertdownload expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7180 was published May 24, 2022
A mediaforaction expression language injection remote code execution vulnerability was discovered... High Unreviewed
CVE-2020-7178 was published May 24, 2022
A viewtaskresultdetailfact expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7176 was published May 24, 2022
A quicktemplateselect expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7167 was published May 24, 2022
A select expression language injection remote code execution vulnerability was discovered in HPE... Critical Unreviewed
CVE-2020-7170 was published May 24, 2022
A soapconfigcontent expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7174 was published May 24, 2022
A actionselectcontent expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7173 was published May 24, 2022
A selectusergroup expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7168 was published May 24, 2022
A thirdpartyperfselecttask expression language injection remote code execution vulnerability was... High Unreviewed
CVE-2020-7179 was published May 24, 2022
A faultparasset expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7152 was published May 24, 2022
A perfselecttask expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7158 was published May 24, 2022
A operationselect expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7164 was published May 24, 2022
A reporttaskselect expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7161 was published May 24, 2022
A iccselectcommand expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7165 was published May 24, 2022
A operatorgroupselectcontent expression language injection remote code execution vulnerability... Critical Unreviewed
CVE-2020-7162 was published May 24, 2022
A navigationto expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7163 was published May 24, 2022
A ictexpertcsvdownload expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7169 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database