Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,767 advisories

Loading
Improper Control of Generation of Code in HawtJNI Moderate
CVE-2013-2035 was published for org.fusesource.hawtjni:hawtjni-runtime (Maven) May 17, 2022
phpwcms 1.9.13 is vulnerable to Code Injection via /phpwcms/setup/setup.php. Critical Unreviewed
CVE-2020-21784 was published May 24, 2022
D-link DIR-816 A2 v1.10 is affected by a remote code injection vulnerability. An HTTP request... Critical Unreviewed
CVE-2021-26810 was published May 24, 2022
PHP remote file inclusion vulnerability in system/application/views/public/commentform.php in... High Unreviewed
CVE-2010-2341 was published May 17, 2022
Askey Fiber Router RTF3505VW-N1 BR_SV_g000_R3505VWN1001_s32_7 devices allow Remote Code Execution... High Unreviewed
CVE-2020-28695 was published May 24, 2022
A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4... Critical Unreviewed
CVE-2020-25414 was published May 24, 2022
Execute arbitrary code vulnerability in Micro Focus SiteScope product, affecting versions 11.40... Critical Unreviewed
CVE-2021-22519 was published May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to inject malicious HTML code... High Unreviewed
CVE-2020-4520 was published May 24, 2022
A remote file inclusion vulnerability in the ArcGIS Server help documentation may allow a remote,... Moderate Unreviewed
CVE-2021-29113 was published Dec 8, 2021
PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and earlier allows remote... High Unreviewed
CVE-2010-2137 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Open Education System (OES) 0.1 beta allow... High Unreviewed
CVE-2010-2132 was published May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in DataLife Engine (DLE) 8.3 allow remote... High Unreviewed
CVE-2010-2005 was published May 17, 2022
PHP remote file inclusion vulnerability in inc/smarty/libs/init.php in AdaptCMS 2.0.0 Beta, when... Moderate Unreviewed
CVE-2010-2618 was published May 17, 2022
index.pl in Miyabi CGI Tools SEO Links 1.02 allows remote attackers to execute arbitrary commands... High Unreviewed
CVE-2010-2626 was published May 17, 2022
PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote... High Unreviewed
CVE-2010-2127 was published May 17, 2022
PHP remote file inclusion vulnerability in modules/catalog/upload_photo.php in Nakid CMS 0.5.2,... Moderate Unreviewed
CVE-2010-2358 was published May 17, 2022
An arbitrary code execution vulnerability exists in Micro Focus Application Performance... Critical Unreviewed
CVE-2021-22514 was published May 24, 2022
Multiple eval injection vulnerabilities in the import functionality in the Chaos Tool Suite (aka... Moderate Unreviewed
CVE-2010-1546 was published May 17, 2022
PHP remote file inclusion vulnerability in default_theme.php in FreePHPBlogSoftware 1.0, when... Moderate Unreviewed
CVE-2010-1978 was published May 17, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x... High Unreviewed
CVE-2021-23013 was published May 24, 2022
In multiple versions of Sophos Endpoint products for MacOS, a local attacker could execute... High Unreviewed
CVE-2021-25264 was published May 24, 2022
A remote code execution (RCE) vulnerability in /root/run/adm.php?admin-ediy&part=exdiy of imcat... High Unreviewed
CVE-2020-22120 was published May 24, 2022
PHP remote file inclusion vulnerability in index.php in PHPAuction 3.2 allows remote attackers to... High Unreviewed
CVE-2008-7000 was published May 17, 2022
PHP remote file inclusion vulnerability in ListRecords.php in osprey 1.0a4.1 allows remote... High Unreviewed
CVE-2008-6807 was published May 17, 2022
phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize... High Unreviewed
CVE-2020-22201 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API