Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,534 advisories

Loading
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP Advanced WAF,... High Unreviewed
CVE-2022-27806 was published May 6, 2022
We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build... Critical Unreviewed
CVE-2022-27588 was published May 6, 2022
It is found that there is a command injection vulnerability in the setopenvpnclientcfg interface... Critical Unreviewed
CVE-2022-28575 was published May 6, 2022
It is found that there is a command injection vulnerability in the setL2tpServerCfg interface in... Critical Unreviewed
CVE-2022-28580 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiWpsStart interface in... Critical Unreviewed
CVE-2022-28584 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiAdvancedCfg interface... Critical Unreviewed
CVE-2022-28581 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiWpsCfg interface in... Critical Unreviewed
CVE-2022-28583 was published May 6, 2022
It is found that there is a command injection vulnerability in the delParentalRules interface in... Critical Unreviewed
CVE-2022-28577 was published May 6, 2022
It is found that there is a command injection vulnerability in the setParentalRules interface in... Critical Unreviewed
CVE-2022-28579 was published May 6, 2022
It is found that there is a command injection vulnerability in the setOpenVpnCfg interface in... Critical Unreviewed
CVE-2022-28578 was published May 6, 2022
It is found that there is a command injection vulnerability in the setWiFiSignalCfg interface in... Critical Unreviewed
CVE-2022-28582 was published May 6, 2022
TOTOLINK N600R v5.3c.5507_B20171031 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2022-27411 was published May 6, 2022
An issue was discovered in soap.cgi?service=WANIPConn1 on D-Link DIR-845 before v1.02b03, DIR-600... Critical Unreviewed
CVE-2013-7471 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43161 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43160 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43162 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... Critical Unreviewed
CVE-2021-43163 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43164 was published May 5, 2022
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers... High Unreviewed
CVE-2021-43159 was published May 5, 2022
Fusionpbx v4.4 and below contains a command injection vulnerability via the download email logs... Critical Unreviewed
CVE-2022-28055 was published May 5, 2022
There is a command injection vulnerability at the /goform/setsambacfg interface of Tenda AC15... Critical Unreviewed
CVE-2022-28557 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20801 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20799 was published May 5, 2022
D-link 882 DIR882A1_FW130B06 was discovered to contain a command injection vulnerability in`/usr... Critical Unreviewed
CVE-2022-28571 was published May 3, 2022
Tenda AX1806 v1.0.0.1 was discovered to contain a command injection vulnerability in ... High Unreviewed
CVE-2022-28572 was published May 3, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database