GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,067
Erlang
29
GitHub Actions
19
Go
1,891
Maven
5,000+
npm
3,624
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,767 advisories
Filter by severity
Improper Control of Generation of Code in HawtJNI
Moderate
CVE-2013-2035
was published
for
org.fusesource.hawtjni:hawtjni-runtime
(Maven)
May 17, 2022
phpwcms 1.9.13 is vulnerable to Code Injection via /phpwcms/setup/setup.php.
Critical
Unreviewed
CVE-2020-21784
was published
May 24, 2022
D-link DIR-816 A2 v1.10 is affected by a remote code injection vulnerability. An HTTP request...
Critical
Unreviewed
CVE-2021-26810
was published
May 24, 2022
PHP remote file inclusion vulnerability in system/application/views/public/commentform.php in...
High
Unreviewed
CVE-2010-2341
was published
May 17, 2022
Askey Fiber Router RTF3505VW-N1 BR_SV_g000_R3505VWN1001_s32_7 devices allow Remote Code Execution...
High
Unreviewed
CVE-2020-28695
was published
May 24, 2022
A local file inclusion vulnerability was discovered in the captcha function in Monstra 3.0.4...
Critical
Unreviewed
CVE-2020-25414
was published
May 24, 2022
Execute arbitrary code vulnerability in Micro Focus SiteScope product, affecting versions 11.40...
Critical
Unreviewed
CVE-2021-22519
was published
May 24, 2022
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to inject malicious HTML code...
High
Unreviewed
CVE-2020-4520
was published
May 24, 2022
A remote file inclusion vulnerability in the ArcGIS Server help documentation may allow a remote,...
Moderate
Unreviewed
CVE-2021-29113
was published
Dec 8, 2021
PHP remote file inclusion vulnerability in _center.php in ProMan 0.1.1 and earlier allows remote...
High
Unreviewed
CVE-2010-2137
was published
May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in Open Education System (OES) 0.1 beta allow...
High
Unreviewed
CVE-2010-2132
was published
May 17, 2022
Multiple PHP remote file inclusion vulnerabilities in DataLife Engine (DLE) 8.3 allow remote...
High
Unreviewed
CVE-2010-2005
was published
May 17, 2022
PHP remote file inclusion vulnerability in inc/smarty/libs/init.php in AdaptCMS 2.0.0 Beta, when...
Moderate
Unreviewed
CVE-2010-2618
was published
May 17, 2022
index.pl in Miyabi CGI Tools SEO Links 1.02 allows remote attackers to execute arbitrary commands...
High
Unreviewed
CVE-2010-2626
was published
May 17, 2022
PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote...
High
Unreviewed
CVE-2010-2127
was published
May 17, 2022
PHP remote file inclusion vulnerability in modules/catalog/upload_photo.php in Nakid CMS 0.5.2,...
Moderate
Unreviewed
CVE-2010-2358
was published
May 17, 2022
An arbitrary code execution vulnerability exists in Micro Focus Application Performance...
Critical
Unreviewed
CVE-2021-22514
was published
May 24, 2022
Multiple eval injection vulnerabilities in the import functionality in the Chaos Tool Suite (aka...
Moderate
Unreviewed
CVE-2010-1546
was published
May 17, 2022
PHP remote file inclusion vulnerability in default_theme.php in FreePHPBlogSoftware 1.0, when...
Moderate
Unreviewed
CVE-2010-1978
was published
May 17, 2022
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x...
High
Unreviewed
CVE-2021-23013
was published
May 24, 2022
In multiple versions of Sophos Endpoint products for MacOS, a local attacker could execute...
High
Unreviewed
CVE-2021-25264
was published
May 24, 2022
A remote code execution (RCE) vulnerability in /root/run/adm.php?admin-ediy&part=exdiy of imcat...
High
Unreviewed
CVE-2020-22120
was published
May 24, 2022
PHP remote file inclusion vulnerability in index.php in PHPAuction 3.2 allows remote attackers to...
High
Unreviewed
CVE-2008-7000
was published
May 17, 2022
PHP remote file inclusion vulnerability in ListRecords.php in osprey 1.0a4.1 allows remote...
High
Unreviewed
CVE-2008-6807
was published
May 17, 2022
phpCMS 2008 sp4 allowas remote malicious users to execute arbitrary php commands via the pagesize...
High
Unreviewed
CVE-2020-22201
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API