Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,534 advisories

Loading
Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly... High Unreviewed
CVE-2014-3524 was published May 13, 2022
An exploitable command injection vulnerability exists in the DHCP daemon configuration of the... Critical Unreviewed
CVE-2018-3963 was published May 13, 2022
An exploitable vulnerability exists in the WiFi Channel parsing of Circle with Disney running... Moderate Unreviewed
CVE-2017-12094 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2833 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2832 was published May 13, 2022
An exploitable command execution vulnerability exists in Information Builders WebFOCUS Business... High Unreviewed
CVE-2016-9044 was published May 13, 2022
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via... Critical Unreviewed
CVE-2022-29303 was published May 13, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28907 was published May 11, 2022
A command injection vulnerability in the component /setnetworksettings/SubnetMask of D-Link... Critical Unreviewed
CVE-2022-28896 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28906 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28908 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28910 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28911 was published May 11, 2022
A command injection vulnerability in the component /SetTriggerLEDBlink/Blink of D-Link DIR882... Critical Unreviewed
CVE-2022-28901 was published May 11, 2022
D-Link DIR-816 A2_v1.10CNB04 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2022-28915 was published May 11, 2022
A command injection vulnerability in the component /setnetworksettings/IPAddress of D-Link DIR882... Critical Unreviewed
CVE-2022-28895 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28909 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28913 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28905 was published May 11, 2022
TOTOLink N600R V5.3c.7159_B20190425 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-28912 was published May 11, 2022
IBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute... High Unreviewed
CVE-2022-22454 was published May 11, 2022
Command injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information... High Unreviewed
CVE-2022-23332 was published May 10, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed
CVE-2022-27224 was published May 10, 2022
A command injection vulnerability has been reported to affect QNAP NAS running QuTScloud, QuTS... High Unreviewed
CVE-2021-44051 was published May 6, 2022
On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x... Critical Unreviewed
CVE-2022-26415 was published May 6, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database