Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,070
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,628
NuGet
638
pip
3,240
Pub
10
RubyGems
858
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

96 advisories

Loading
A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware... High Unreviewed
CVE-2020-35576 was published May 24, 2022
OS Command Injection in git-promise High
CVE-2022-24376 was published for git-promise (npm) Jun 11, 2022
lirantal
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-30240 was published May 10, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-30239 was published May 10, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-29971 was published May 10, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-29972 was published May 10, 2022
University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other... High Unreviewed
CVE-2018-19518 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1606 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1607 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1610 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1608 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software and Cisco FXOS Software could allow an... High Unreviewed
CVE-2019-1611 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1609 was published May 13, 2022
Null characters not escaped High
CVE-2021-21384 was published for shescape (npm) Mar 18, 2021
A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could... High Unreviewed
CVE-2018-0345 was published May 13, 2022
There was an argument injection vulnerability in Sourcetree for Windows via filenames in... High Unreviewed
CVE-2018-13386 was published May 13, 2022
Arbitrary command execution on Windows via qutebrowserurl: URL handler High
CVE-2021-41146 was published for qutebrowser (pip) Oct 22, 2021
mIRC before 7.55 allows remote command execution by using argument injection through custom URI... High Unreviewed
CVE-2019-6453 was published May 13, 2022
There was an argument injection vulnerability in Atlassian Sourcetree for macOS from version 1.2... High Unreviewed
CVE-2018-20234 was published May 13, 2022
Logstash prior to version 2.1.2, the CSV output can be attacked via engineered input that will... High Unreviewed
CVE-2016-1000222 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd)... High Unreviewed
CVE-2018-11022 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd... High Unreviewed
CVE-2018-11024 was published May 14, 2022
kernel/omap/drivers/video/omap2/dsscomp/device.c in the kernel component in Amazon Kindle Fire HD... High Unreviewed
CVE-2018-11021 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd)... High Unreviewed
CVE-2018-11019 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd... High Unreviewed
CVE-2018-11023 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API