Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,073 advisories

Loading
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17653 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17414 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17424 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17418 was published May 13, 2022
Multiple TIBCO Products are prone to multiple unspecified SQL-injection vulnerabilities because... Critical Unreviewed
CVE-2017-3181 was published May 13, 2022
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable... Moderate Unreviewed
CVE-2022-43022 was published Oct 19, 2022
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the entriesPerPage... Moderate Unreviewed
CVE-2022-43021 was published Oct 19, 2022
A vulnerability in the web-based management interface of the Cisco Smart Net Total Care (SNTC)... Moderate Unreviewed
CVE-2017-6754 was published May 13, 2022
SmartVista SVFE2 v2.2.22 was discovered to contain multiple SQL injection vulnerabilities via the... High Unreviewed
CVE-2022-38615 was published Sep 10, 2022
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable... Moderate Unreviewed
CVE-2022-43020 was published Oct 19, 2022
A vulnerability in the SQL database interface for Cisco Emergency Responder could allow an... Moderate Unreviewed
CVE-2017-12227 was published May 13, 2022
A vulnerability in the web framework of Cisco Unified Communications Manager could allow an... Moderate Unreviewed
CVE-2018-0120 was published May 13, 2022
A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could... Critical Unreviewed
CVE-2018-0320 was published May 13, 2022
Multiple SQL injection vulnerabilities in Synology Photo Station before 6.7.4-3433 and 6.3-2968... Critical Unreviewed
CVE-2017-11161 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17420 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17416 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17419 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17425 was published May 13, 2022
A vulnerability in ReadA version 1.1.0.2 and previous allows an authorized user with access to a... Moderate Unreviewed
CVE-2018-10595 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17655 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17423 was published May 13, 2022
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations... Critical Unreviewed
CVE-2017-17659 was published May 13, 2022
The WorkPoint component, which is embedded in all RSA Archer, versions 6.1.x, 6.2.x, 6.3.x prior... Moderate Unreviewed
CVE-2018-11065 was published May 13, 2022
A SQL injection vulnerability in the web administration and quarantine components of Micro Focus... Critical Unreviewed
CVE-2018-12464 was published May 13, 2022
A SQL Injection in the RegistrationSharing module of SUSE Linux SMT allows remote attackers to... Critical Unreviewed
CVE-2018-12470 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database