GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,919
Composer 4,476
Erlang 33
GitHub Actions 24
Go 2,207
Maven 5,433
npm 3,858
NuGet 696
pip 3,639
Pub 12
RubyGems 913
Rust 918
Swift 38

Unreviewed advisories

All unreviewed 249,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

687 advisories

Filter by severity

Sort by

Least recently updated

In Config Manager, there is a possible command injection due to improper input validation. This... Critical Unreviewed

CVE-2021-31575 was published Feb 7, 2023

In Config Manager, there is a possible command injection due to improper input validation. This... Critical Unreviewed

CVE-2021-31574 was published Feb 7, 2023

In Config Manager, there is a possible command injection due to improper input validation. This... Critical Unreviewed

CVE-2021-31573 was published Feb 7, 2023

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1355 was published Feb 13, 2024

Improper authorization in Microsoft Partner Center allows an authorized attacker to elevate... Critical Unreviewed

CVE-2025-29814 was published Mar 21, 2025

A vulnerability in ollama/ollama version 0.1.37 allows for remote code execution (RCE) due to... Critical Unreviewed

CVE-2024-7773 was published Mar 20, 2025

SSH Communication Security PrivX versions between 18.0-36.0 implement insufficient validation on... Critical Unreviewed

CVE-2024-47857 was published Jan 31, 2025

Microsoft Outlook Elevation of Privilege Vulnerability Critical Unreviewed

CVE-2023-23397 was published Mar 14, 2023

An issue found in Peacexie Imcat v5.4 allows attackers to execute arbitrary code via the... Critical Unreviewed

CVE-2021-35370 was published Feb 24, 2023

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27493 was published Mar 11, 2025

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9),... Critical Unreviewed

CVE-2025-27494 was published Mar 11, 2025

The Samsung Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, and Exynos Auto T512... Critical Unreviewed

CVE-2023-24033 was published Mar 13, 2023

Infoblox NIOS through 8.6.4 and 9.x through 9.0.3 has Improper Input Validation. Critical Unreviewed

CVE-2024-36047 was published Feb 28, 2025

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This... Critical Unreviewed

CVE-2024-7591 was published Sep 5, 2024

Serv-U web login screen was allowing characters that were not sanitized by the authentication... Critical Unreviewed

CVE-2021-35247 was published Jan 11, 2022

Increasing the resolution of video frames, while performing a multi-threaded encode, can result... Critical Unreviewed

CVE-2023-6879 was published Dec 28, 2023

Improper Input Validation vulnerability in OTRS AG OTRS, OTRS AG ((OTRS)) Community Edition... Critical Unreviewed

CVE-2022-4427 was published Dec 19, 2022

A security vulnerability has been identified in the IBL Software Engineering Visual Weather and... Critical Unreviewed

CVE-2025-1077 was published Feb 7, 2025

If exploited, this command injection vulnerability could allow remote attackers to run arbitrary... Critical Unreviewed

CVE-2018-19949 was published May 24, 2022

A command injection vulnerability in the web server of some Hikvision product. Due to the... Critical Unreviewed

CVE-2021-36260 was published May 24, 2022

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab... Critical Unreviewed

CVE-2021-22205 was published May 24, 2022

An unauthenticated remote attacker can modify configurations to perform a remote code execution... Critical Unreviewed

CVE-2024-25995 was published Mar 12, 2024

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x... Critical Unreviewed

CVE-2021-22991 was published May 24, 2022

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input... Critical Unreviewed

CVE-2021-21985 was published May 24, 2022

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software... Critical Unreviewed

CVE-2018-0171 was published May 13, 2022

Previous 1 2 3 4 5 … 27 28 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

687 advisories