GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
100 advisories
Filter by severity
A devicethresholdconfig expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7192
was published
May 24, 2022
A devsoftsel expression language injection remote code execution vulnerability was discovered in...
High
Unreviewed
CVE-2020-7191
was published
May 24, 2022
A tvxlanlegend expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7185
was published
May 24, 2022
A faultflasheventselectfact expression language injectionremote code execution vulnerability was...
High
Unreviewed
CVE-2020-7189
was published
May 24, 2022
A deviceselect expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7190
was published
May 24, 2022
A powershellconfigcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7186
was published
May 24, 2022
A ictexpertcsvdownload expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7193
was published
May 24, 2022
A sshconfig expression language injection remote code execution vulnerability was discovered in...
High
Unreviewed
CVE-2020-7182
was published
May 24, 2022
A iccselectdymicparam expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7175
was published
May 24, 2022
A wmiconfigcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7177
was published
May 24, 2022
A forwardredirect expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7183
was published
May 24, 2022
A smsrulesdownload expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7181
was published
May 24, 2022
A ictexpertdownload expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7180
was published
May 24, 2022
A selectusergroup expression language injection remote code execution vulnerability was...
Critical
Unreviewed
CVE-2020-7168
was published
May 24, 2022
A thirdpartyperfselecttask expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7179
was published
May 24, 2022
A viewtaskresultdetailfact expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7176
was published
May 24, 2022
A actionselectcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7173
was published
May 24, 2022
A quicktemplateselect expression language injection remote code execution vulnerability was...
Critical
Unreviewed
CVE-2020-7167
was published
May 24, 2022
A select expression language injection remote code execution vulnerability was discovered in HPE...
Critical
Unreviewed
CVE-2020-7170
was published
May 24, 2022
A mediaforaction expression language injection remote code execution vulnerability was discovered...
High
Unreviewed
CVE-2020-7178
was published
May 24, 2022
A soapconfigcontent expression language injection remote code execution vulnerability was...
High
Unreviewed
CVE-2020-7174
was published
May 24, 2022
A navigationto expression language injection remote code execution vulnerability was discovered...
Critical
Unreviewed
CVE-2020-7163
was published
May 24, 2022
A reporttaskselect expression language injection remote code execution vulnerability was...
Critical
Unreviewed
CVE-2020-7161
was published
May 24, 2022
A faultparasset expression language injection remote code execution vulnerability was discovered...
Critical
Unreviewed
CVE-2020-7152
was published
May 24, 2022
A perfselecttask expression language injection remote code execution vulnerability was discovered...
Critical
Unreviewed
CVE-2020-7158
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API