Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

362 advisories

Loading
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... Moderate Unreviewed
CVE-2019-20703 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... Moderate Unreviewed
CVE-2019-20708 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects... Moderate Unreviewed
CVE-2019-20704 was published May 24, 2022
NETGEAR R7800 devices before 1.0.2.62 are affected by command injection by an authenticated user. Moderate Unreviewed
CVE-2019-20761 was published May 24, 2022
Dell PowerScale OneFS, versions 8.2.2-9.3.0, contain an OS command injection vulnerability. A... Moderate Unreviewed
CVE-2022-34437 was published Oct 21, 2022
A vulnerability in Trend Micro InterScan Web Security Virtual Appliance 6.5 may allow remote... Moderate Unreviewed
CVE-2020-8605 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14438 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14441 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14439 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14440 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14442 was published May 24, 2022
Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This... Moderate Unreviewed
CVE-2020-14437 was published May 24, 2022
FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently... Moderate Unreviewed
CVE-2020-9242 was published May 24, 2022
D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to... Moderate Unreviewed
CVE-2020-12774 was published May 24, 2022
Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option,... Moderate Unreviewed
CVE-2020-17367 was published May 24, 2022
Aterm SA3500G firmware versions prior to Ver. 3.5.9 allows an attacker with an administrative... Moderate Unreviewed
CVE-2020-5636 was published May 24, 2022
Philips Interventional Workspot (Release 1.3.2, 1.4.0, 1.4.1, 1.4.3, 1.4.5), Coronary Tools... Moderate Unreviewed
CVE-2020-27298 was published May 24, 2022
A command injection vulnerability in install package validation subsystem of Juniper Networks... Moderate Unreviewed
CVE-2021-0219 was published May 24, 2022
A command injection vulnerability has been reported to affect certain versions of Malware Remover... Moderate Unreviewed
CVE-2020-36198 was published May 24, 2022
XStream is vulnerable to a Remote Command Execution attack Moderate
CVE-2021-21345 was published for com.thoughtworks.xstream:xstream (Maven) Mar 22, 2021
CODESYS V2 runtime system SP before 2.4.7.55 has Improper Neutralization of Special Elements used... Moderate Unreviewed
CVE-2021-30187 was published May 24, 2022
There is a command injection vulnerability in the HG8045Q product. When the command-line... Moderate Unreviewed
CVE-2021-37028 was published May 24, 2022
Dell EMC PowerScale OneFS versions 8.2.x - 9.2.1.x contain an OS command injection vulnerability.... Moderate Unreviewed
CVE-2021-21599 was published May 24, 2022
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to... Moderate Unreviewed
CVE-2022-20865 was published Aug 26, 2022
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure ... Moderate Unreviewed
CVE-2021-1584 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database