Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,270
Erlang
31
GitHub Actions
21
Go
2,044
Maven
5,000+
npm
3,736
NuGet
663
pip
3,414
Pub
12
RubyGems
891
Rust
868
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,093 advisories

Loading
Belkin LINKSYS RE6500 devices before 1.0.11.001 allow remote authenticated users to execute... High Unreviewed
CVE-2020-35714 was published May 24, 2022
Certain Zyxel products allow command injection by an admin via an input string to chg_exp_pwd... High Unreviewed
CVE-2020-29299 was published May 24, 2022
NETGEAR DGN2200v1 devices before v1.0.0.58 are affected by command injection. High Unreviewed
CVE-2020-35777 was published May 24, 2022
A remote code execution vulnerability was identified in GitHub Enterprise Server that could be... High Unreviewed
CVE-2020-10519 was published May 24, 2022
An authenticated command injection vulnerability exists in the Aruba InstantOS and ArubaOS 10... High Unreviewed
CVE-2022-37893 was published Oct 8, 2022
NuProcess vulnerable to command-line injection through insertion of NUL character(s) High
CVE-2022-39243 was published for com.zaxxer:nuprocess (Maven) Sep 30, 2022
In Fibaro Home Center 2 and Lite devices with firmware version 4.540 and older an authenticated... High Unreviewed
CVE-2021-20991 was published May 24, 2022
NFX Series devices using Juniper Networks Junos OS are susceptible to a local command execution... High Unreviewed
CVE-2021-0253 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... High Unreviewed
CVE-2021-29070 was published May 24, 2022
In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not... High Unreviewed
CVE-2021-26311 was published May 24, 2022
The text-to-speech engine in libretro RetroArch for Windows 0.11 passes unsanitized input to... High Unreviewed
CVE-2021-28927 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed
CVE-2021-1549 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed
CVE-2021-1555 was published May 24, 2022
A vulnerability has been discovered in BigTree CMS 4.4.10 and earlier which allows an... High Unreviewed
CVE-2020-26670 was published May 24, 2022
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0... High Unreviewed
CVE-2021-25172 was published May 24, 2022
SQL Injection in the "evoadm.php" component of b2evolution v7.2.2-stable allows remote attackers... High Unreviewed
CVE-2021-28242 was published May 24, 2022
NFX Series devices using Juniper Networks Junos OS are susceptible to a local code execution... High Unreviewed
CVE-2021-0252 was published May 24, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2020-27862 was published May 24, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2020-27864 was published May 24, 2022
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2020-27867 was published May 24, 2022
The default console presented to users over telnet (when enabled) is restricted to a subset of... High Unreviewed
CVE-2022-47210 was published Dec 16, 2022
The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to... High Unreviewed
CVE-2020-12967 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed
CVE-2021-1553 was published May 24, 2022
Multiple vulnerabilities in Cisco DNA Spaces Connector could allow an authenticated, remote... High Unreviewed
CVE-2021-1560 was published May 24, 2022
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business... High Unreviewed
CVE-2021-1548 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database