GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,579
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,169
npm 3,703
NuGet 661
pip 3,329
Pub 11
RubyGems 884
Rust 844
Swift 36

Unreviewed advisories

All unreviewed 234,114

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,897 advisories

Filter by severity

Sort by

Least recently updated

Dell EMC CloudLink 7.1 and all prior versions contain an OS command injection Vulnerability. A... High Unreviewed

CVE-2021-36313 was published Nov 24, 2021

A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited,... Critical Unreviewed

CVE-2021-38685 was published Nov 27, 2021

An issue was discovered on Victure WR1200 devices through 1.0.3. A command injection... High Unreviewed

CVE-2021-43283 was published Dec 1, 2021

This issue was discovered when the ipTIME C200 IP Camera was synchronized with the ipTIME NAS. It... Critical Unreviewed

CVE-2020-7879 was published Dec 1, 2021

Vulnerability in dirhistory plugin Description: the widgets that go back and forward in the... High Unreviewed

CVE-2021-3725 was published Dec 1, 2021

# Vulnerability in `title` function **Description**: the `title` function defined in `lib... Critical Unreviewed

CVE-2021-3726 was published Dec 1, 2021

# Vulnerability in `rand-quote` and `hitokoto` plugins **Description**: the `rand-quote` and ... Critical Unreviewed

CVE-2021-3727 was published Dec 1, 2021

# Vulnerability in `pygmalion`, `pygmalion-virtualenv` and `refined` themes **Description**:... Critical Unreviewed

CVE-2021-3769 was published Dec 1, 2021

OS command injection vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC... High Unreviewed

CVE-2021-20863 was published Dec 2, 2021

ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior... High Unreviewed

CVE-2021-20859 was published Dec 2, 2021

ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and... Moderate Unreviewed

CVE-2021-20854 was published Dec 2, 2021

ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and... Moderate Unreviewed

CVE-2021-20853 was published Dec 2, 2021

A crafted configuration packet sent by an authenticated administrative user can be used to... High Unreviewed

CVE-2021-23862 was published Dec 9, 2021

Multiple command injection vulnerabilities in the command line interpreter of FortiWeb versions 6... High Unreviewed

CVE-2021-36195 was published Dec 9, 2021

A post-authentication remote command injection vulnerability in SonicWall SMA100 allows a remote... High Unreviewed

CVE-2021-20044 was published Dec 9, 2021

Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert... High Unreviewed

CVE-2021-20039 was published Dec 9, 2021

A command execution vulnerability exists in the wifi_country_code_update functionality of the... Critical Unreviewed

CVE-2021-21954 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in the parameters of operation 49 in... High Unreviewed

CVE-2021-20144 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in the parameters of operation 48 in... High Unreviewed

CVE-2021-20143 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in the parameters of operation 41 in... High Unreviewed

CVE-2021-20142 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in the parameters of operation 10 in... High Unreviewed

CVE-2021-20140 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in the parameters of operation 32 in... High Unreviewed

CVE-2021-20141 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in the parameters of operation 3 in the... High Unreviewed

CVE-2021-20139 was published Dec 10, 2021

An unauthenticated command injection vulnerability exists in multiple parameters in the Gryphon... High Unreviewed

CVE-2021-20138 was published Dec 10, 2021

A violation of secure design principles in Fortinet Meru AP version 8.6.1 and below, version 8.5... High Unreviewed

CVE-2021-42759 was published Dec 10, 2021

Previous 1 2 3 4 5 … 115 116 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,897 advisories