GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,828
Composer 4,768
Erlang 35
GitHub Actions 29
Go 2,332
Maven 5,625
npm 3,965
NuGet 713
pip 3,748
Pub 12
RubyGems 921
Rust 975
Swift 38

Unreviewed advisories

All unreviewed 258,992

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,961 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An OS command injection vulnerability exists in the console factory functionality of InHand... High Unreviewed

CVE-2022-26007 was published May 13, 2022

An OS command injection vulnerability exists in the daretools binary functionality of InHand... High Unreviewed

CVE-2022-26042 was published May 13, 2022

An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed

CVE-2022-27224 was published May 10, 2022

A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP... High Unreviewed

CVE-2013-1599 was published May 5, 2022

OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken... High Unreviewed

CVE-2013-2024 was published May 5, 2022

An OS Command Injection vulnerability in the configuration parser of Eve-NG Professional through... High Unreviewed

CVE-2022-27903 was published May 5, 2022

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed

CVE-2022-20799 was published May 5, 2022

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed

CVE-2022-20801 was published May 5, 2022

MitraStar GPT-2541GNAC-N1 (HGU) 100VNZ0b33 devices allow remote authenticated users to obtain... High Unreviewed

CVE-2021-42165 was published May 4, 2022

Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java... High Unreviewed

CVE-2010-1423 was published May 2, 2022

The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using... High Unreviewed

CVE-2010-1132 was published May 2, 2022

The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super... High Unreviewed

CVE-2010-0934 was published May 2, 2022

The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote... High Unreviewed

CVE-2010-0418 was published May 2, 2022

Accellion Secure File Transfer Appliance before 8_0_105 allows remote authenticated... High Unreviewed

CVE-2009-4644 was published May 2, 2022

Argument injection vulnerability in the traceroute function in Traceroute.php in the... High Unreviewed

CVE-2009-4025 was published May 2, 2022

changetrack 4.3 allows local users to execute arbitrary commands via CRLF sequences and shell... High Unreviewed

CVE-2009-3233 was published May 2, 2022

statuswml.cgi in Nagios before 3.1.1 allows remote attackers to execute arbitrary commands via... High Unreviewed

CVE-2009-2288 was published May 2, 2022

Worldweaver DX Studio Player 3.0.29.0, 3.0.22.0, 3.0.12.0, and probably other versions before 3.0... High Unreviewed

CVE-2009-2011 was published May 2, 2022

dig.php in GScripts.net DNS Tools allows remote attackers to execute arbitrary commands via shell... High Unreviewed

CVE-2009-1916 was published May 2, 2022

The system.openURL function in StoneTrip Ston3D StandalonePlayer (aka S3DPlayer StandAlone) 1.6.2... High Unreviewed

CVE-2009-1792 was published May 2, 2022

general/login.php in phpCollab 2.5 rc3 and earlier allows remote attackers to execute arbitrary... High Unreviewed

CVE-2008-4304 was published May 2, 2022

The Netrw plugin 125 in netrw.vim in Vim 7.2a.10 allows user-assisted attackers to execute... High Unreviewed

CVE-2008-3076 was published May 1, 2022

The shellescape function in Vim 7.0 through 7.2, including 7.2a.10, allows user-assisted... High Unreviewed

CVE-2008-3074 was published May 1, 2022

eBay Enhanced Picture Uploader ActiveX control (EPUWALcontrol.dll) before 1.0.27 allows remote... High Unreviewed

CVE-2008-2475 was published May 1, 2022

The Component Object Model (COM) functions in PHP 5.x on Windows do not follow safe_mode and... High Unreviewed

CVE-2007-5653 was published May 1, 2022

Previous 1 2 … 73 74 75 76 77 78 79 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,961 advisories