Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

102 advisories

Loading
A improper neutralization of argument delimiters in a command ('argument injection') in Fortinet... High Unreviewed
CVE-2022-40677 was published Feb 16, 2023
CRITICAL: An improper neutralization of argument delimiters in a command vulnerability was... High Unreviewed
CVE-2022-23740 was published Nov 23, 2022
kernel/omap/drivers/mfd/twl6030-gpadc.c in the kernel component in Amazon Kindle Fire HD(3rd)... High Unreviewed
CVE-2018-11025 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd... High Unreviewed
CVE-2018-11023 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd)... High Unreviewed
CVE-2018-11019 was published May 14, 2022
kernel/omap/drivers/video/omap2/dsscomp/device.c in the kernel component in Amazon Kindle Fire HD... High Unreviewed
CVE-2018-11021 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd... High Unreviewed
CVE-2018-11024 was published May 14, 2022
kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd)... High Unreviewed
CVE-2018-11022 was published May 14, 2022
Logstash prior to version 2.1.2, the CSV output can be attacked via engineered input that will... High Unreviewed
CVE-2016-1000222 was published May 14, 2022
There was an argument injection vulnerability in Atlassian Sourcetree for macOS from version 1.2... High Unreviewed
CVE-2018-20234 was published May 13, 2022
mIRC before 7.55 allows remote command execution by using argument injection through custom URI... High Unreviewed
CVE-2019-6453 was published May 13, 2022
There was an argument injection vulnerability in Sourcetree for Windows via filenames in... High Unreviewed
CVE-2018-13386 was published May 13, 2022
A vulnerability in the configuration and management database of the Cisco SD-WAN Solution could... High Unreviewed
CVE-2018-0345 was published May 13, 2022
Null characters not escaped High
CVE-2021-21384 was published for shescape (npm) Mar 18, 2021
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1609 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software and Cisco FXOS Software could allow an... High Unreviewed
CVE-2019-1611 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1608 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1610 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1607 was published May 13, 2022
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... High Unreviewed
CVE-2019-1606 was published May 13, 2022
University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other... High Unreviewed
CVE-2018-19518 was published May 13, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-30239 was published May 10, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-29971 was published May 10, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-30240 was published May 10, 2022
An argument injection vulnerability in the browser-based authentication component of the... High Unreviewed
CVE-2022-29972 was published May 10, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database