Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

847 advisories

Loading
In SolarWinds Log & Event Manager (LEM) before 6.3.1 Hotfix 4, a menu system is encountered when... Critical Unreviewed
CVE-2017-7722 was published May 17, 2022
In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for File 7.1.80... Critical Unreviewed
CVE-2017-4984 was published May 17, 2022
VMware Horizon View Client (2.x, 3.x and 4.x prior to 4.5.0) contains a command injection... Critical Unreviewed
CVE-2017-4918 was published May 17, 2022
In Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, the "PING" (aka tag_ipPing)... Critical Unreviewed
CVE-2017-9980 was published May 17, 2022
scripts/license.pl in Veritas NetBackup Appliance 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1... Critical Unreviewed
CVE-2016-7399 was published May 17, 2022
Snoopy allows remote attackers to execute arbitrary commands. NOTE: this vulnerability exists... Critical Unreviewed
CVE-2014-5009 was published May 17, 2022
The login page of the server on Huawei FusionServer rack servers RH2288 V3 with software before... Critical Unreviewed
CVE-2015-7841 was published May 17, 2022
QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8... Critical Unreviewed
CVE-2017-13069 was published May 17, 2022
UI-Dialog 1.09 and earlier allows remote attackers to execute arbitrary commands. Critical Unreviewed
CVE-2008-7315 was published May 17, 2022
Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute... Critical Unreviewed
CVE-2013-6924 was published May 17, 2022
An issue was discovered in Cloud Foundry Foundation Cloud Foundry release versions prior to v245... Critical Unreviewed
CVE-2016-6655 was published May 17, 2022
Eval injection vulnerability in the fm_saveHelperGatherItems function in ajax.php in the Form... Critical Unreviewed
CVE-2015-7806 was published May 17, 2022
The Net::Ping::External extension through 0.15 for Perl does not properly sanitize arguments (e.g... Critical Unreviewed
CVE-2008-7319 was published May 17, 2022
QNAP has already patched this vulnerability. This security concern allows a remote attacker to... Critical Unreviewed
CVE-2017-13071 was published May 17, 2022
A remote command execution (RCE) vulnerability was found in FeMiner wms V1.0 in /wms/src/system... Critical Unreviewed
CVE-2021-42897 was published May 17, 2022
A authenticated remote command injection vulnerability was discovered in Aruba ClearPass Policy... Critical Unreviewed
CVE-2022-23663 was published May 17, 2022
The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8... Critical Unreviewed
CVE-2016-2396 was published May 14, 2022
The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1... Critical Unreviewed
CVE-2016-2397 was published May 14, 2022
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan... Critical Unreviewed
CVE-2014-6120 was published May 14, 2022
The EZPZ One Click Backup (ezpz-one-click-backup) plugin 12.03.10 and earlier for WordPress... Critical Unreviewed
CVE-2014-3114 was published May 14, 2022
The WordPress Flash Uploader plugin before 3.1.3 for WordPress allows remote attackers to execute... Critical Unreviewed
CVE-2014-5014 was published May 14, 2022
ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101... Critical Unreviewed
CVE-2015-6024 was published May 14, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote... Critical Unreviewed
CVE-2016-9683 was published May 14, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to two Remote... Critical Unreviewed
CVE-2016-9682 was published May 14, 2022
The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote... Critical Unreviewed
CVE-2016-9684 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database