Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

100 advisories

Loading
A faultparasset expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7152 was published May 24, 2022
A iccselectcommand expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7165 was published May 24, 2022
A operatorgrouptreeselectcontent expression language injection remote code execution... Critical Unreviewed
CVE-2020-7166 was published May 24, 2022
A customtemplateselect expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7159 was published May 24, 2022
A operatorgroupselectcontent expression language injection remote code execution vulnerability... Critical Unreviewed
CVE-2020-7162 was published May 24, 2022
A navigationto expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7163 was published May 24, 2022
A faultstatchoosefaulttype expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7150 was published May 24, 2022
A faulttrapgroupselect expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7151 was published May 24, 2022
A faultinfo_content expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7156 was published May 24, 2022
A iccselectdevtype expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7153 was published May 24, 2022
A selviewnavcontent expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7157 was published May 24, 2022
A ifviewselectpage expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7154 was published May 24, 2022
A select expression language injection remote code execution vulnerability was discovered in HPE... Critical Unreviewed
CVE-2020-7155 was published May 24, 2022
A iccselectdeviceseries expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7160 was published May 24, 2022
A chooseperfview expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7145 was published May 24, 2022
A comparefilesresult expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7144 was published May 24, 2022
A ictexpertcsvdownload expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7149 was published May 24, 2022
A deployselectbootrom expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7147 was published May 24, 2022
A devgroupselect expression language injection remote code execution vulnerability was discovered... Critical Unreviewed
CVE-2020-7146 was published May 24, 2022
A eventinfo_content expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7142 was published May 24, 2022
A deployselectsoftware expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7148 was published May 24, 2022
A faultdevparasset expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-7143 was published May 24, 2022
A syslogtempletselectwin expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-24651 was published May 24, 2022
A legend expression language injection remote code execution vulnerability was discovered in HPE... Critical Unreviewed
CVE-2020-24650 was published May 24, 2022
A addvsiinterfaceinfo expression language injection remote code execution vulnerability was... Critical Unreviewed
CVE-2020-24652 was published May 24, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database