Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,810
Erlang
36
GitHub Actions
31
Go
2,395
Maven
5,000+
npm
4,030
NuGet
721
pip
3,820
Pub
12
RubyGems
932
Rust
988
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,995 advisories

Loading
In the web management interface in Foscam C1 Indoor HD cameras with application firmware 2.52.2... High Unreviewed
CVE-2017-2849 was published May 13, 2022
An exploitable command injection vulnerability exists in the web management interface used by the... High Unreviewed
CVE-2017-2873 was published May 13, 2022
An exploitable vulnerability exists in the /api/CONFIG/backup functionality of Circle with Disney... High Unreviewed
CVE-2017-2866 was published May 13, 2022
An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with... High Unreviewed
CVE-2017-2890 was published May 13, 2022
An exploitable vulnerability exists in the notifications functionality of Circle with Disney... High Unreviewed
CVE-2017-2917 was published May 13, 2022
An OS command injection vulnerability exists in the httpd wlscan_ASP functionality of InHand... High Unreviewed
CVE-2022-26085 was published May 13, 2022
An OS command injection vulnerability exists in the console infactory_net functionality of InHand... High Unreviewed
CVE-2022-26518 was published May 13, 2022
An OS command injection vulnerability exists in the console infactory_port functionality of... High Unreviewed
CVE-2022-26420 was published May 13, 2022
An OS command injection vulnerability exists in the daretools binary functionality of InHand... High Unreviewed
CVE-2022-26042 was published May 13, 2022
An OS command injection vulnerability exists in the console factory functionality of InHand... High Unreviewed
CVE-2022-26007 was published May 13, 2022
An OS command injection vulnerability exists in the console infactory_wlan functionality of... High Unreviewed
CVE-2022-26075 was published May 13, 2022
An issue was discovered in Galleon NTS-6002-GPS 4.14.103-Galleon-NTS-6002.V12 4. An authenticated... High Unreviewed
CVE-2022-27224 was published May 10, 2022
A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP... High Unreviewed
CVE-2013-1599 was published May 5, 2022
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken... High Unreviewed
CVE-2013-2024 was published May 5, 2022
An OS Command Injection vulnerability in the configuration parser of Eve-NG Professional through... High Unreviewed
CVE-2022-27903 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20799 was published May 5, 2022
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 and... High Unreviewed
CVE-2022-20801 was published May 5, 2022
MitraStar GPT-2541GNAC-N1 (HGU) 100VNZ0b33 devices allow remote authenticated users to obtain... High Unreviewed
CVE-2021-42165 was published May 4, 2022
Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java... High Unreviewed
CVE-2010-1423 was published May 2, 2022
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using... High Unreviewed
CVE-2010-1132 was published May 2, 2022
The triggers functionality in Perforce Server 2008.1 allows remote authenticated users with super... High Unreviewed
CVE-2010-0934 was published May 2, 2022
The web interface in chumby one before 1.0.4 and chumby classic before 1.7.2 allows remote... High Unreviewed
CVE-2010-0418 was published May 2, 2022
Accellion Secure File Transfer Appliance before 8_0_105 allows remote authenticated... High Unreviewed
CVE-2009-4644 was published May 2, 2022
Argument injection vulnerability in the traceroute function in Traceroute.php in the... High Unreviewed
CVE-2009-4025 was published May 2, 2022
changetrack 4.3 allows local users to execute arbitrary commands via CRLF sequences and shell... High Unreviewed
CVE-2009-3233 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database