Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,411
Erlang
33
GitHub Actions
22
Go
2,146
Maven
5,000+
npm
3,808
NuGet
687
pip
3,481
Pub
12
RubyGems
897
Rust
899
Swift
38
Unreviewed advisories
All unreviewed
5,000+

391 advisories

Loading
A vulnerability in the local management CLI implementation for specific commands on the Cisco UCS... Moderate Unreviewed
CVE-2019-1725 was published May 13, 2022
Command manipulation in LabKey Server Community Edition before 18.3.0-61806.763 allows an... Moderate Unreviewed
CVE-2019-3913 was published May 13, 2022
An exploitable code execution vulnerability exists in the firmware update functionality of Yi... Moderate Unreviewed
CVE-2018-3890 was published May 13, 2022
The Check Point Gaia Portal's GUI Clients allowed authenticated administrators with permission... Moderate Unreviewed
CVE-2021-30361 was published May 12, 2022
The node_process_command function in Zabbix Server before 1.8 allows remote attackers to execute... Moderate Unreviewed
CVE-2009-4498 was published May 2, 2022
Untrusted search path vulnerability in dash 0.5.4, when used as a login shell, allows local users... Moderate Unreviewed
CVE-2009-0854 was published May 2, 2022
Untrusted search path vulnerability in GTK2 in OpenSUSE 11.0 and 11.1 allows local users to... Moderate Unreviewed
CVE-2009-0848 was published May 2, 2022
cbrPager before 0.9.17 allows user-assisted remote attackers to execute arbitrary commands via... Moderate Unreviewed
CVE-2008-2575 was published May 1, 2022
Unspecified vulnerability in Sun Solaris 8 directory functions allows local users to cause a... Moderate Unreviewed
CVE-2008-1115 was published May 1, 2022
A certain ActiveX control in PDWizard.ocx 6.0.0.9782 and earlier in Microsoft Visual Studio 6.0... Moderate Unreviewed
CVE-2007-4891 was published May 1, 2022
Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 and 3.0alpha allow remote... Moderate Unreviewed
CVE-2007-4041 was published May 1, 2022
nbmember.cgi in Netbilling 2.0 allows remote attackers to obtain sensitive information via the... Moderate Unreviewed
CVE-2004-2732 was published Apr 29, 2022
Code injection in npm git Moderate
CVE-2021-23632 was published for git (npm) Mar 18, 2022
Exposure of home directory through shescape on Unix with Bash Moderate
CVE-2022-24725 was published for shescape (npm) Mar 3, 2022
Command injection in strapi Moderate
CVE-2022-0764 was published for strapi (npm) Feb 27, 2022
Command injection in github.com/google/fscrypt Moderate
CVE-2022-25328 was published for github.com/google/fscrypt (Go) Feb 26, 2022
Kubernetes Arbitrary Command Injection Moderate
CVE-2018-1002101 was published for k8s.io/kubernetes (Go) Feb 15, 2022
OS Command Injection in fsa Moderate
CVE-2020-7615 was published for fsa (npm) Dec 9, 2021
OS Command injection in docker-cli-js Moderate
CVE-2021-23732 was published for docker-cli-js (npm) Dec 2, 2021 withdrawn
ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and... Moderate Unreviewed
CVE-2021-20853 was published Dec 2, 2021
ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and... Moderate Unreviewed
CVE-2021-20854 was published Dec 2, 2021
Code injection in `saved_model_cli` Moderate
CVE-2021-41228 was published for tensorflow (pip) Nov 10, 2021
Code Injection in SLO Generator Moderate
CVE-2021-22557 was published for slo-generator (pip) Oct 5, 2021
Arbitrary Command Injection due to Improper Command Sanitization Moderate
GHSA-hxwm-x553-x359 was published for @npmcli/git (npm) Aug 5, 2021
tyage
OS Command Injection in mversion Moderate
CVE-2020-7688 was published for mversion (npm) May 17, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database