GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
844
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
321 advisories
Filter by severity
Multiple improper neutralization of special elements used in an OS command ('OS Command Injection...
Moderate
Unreviewed
CVE-2024-32118
was published
Nov 12, 2024
A post-authentication command injection vulnerability in the CGI program in the Zyxel GS1900-48...
Moderate
Unreviewed
CVE-2024-8881
was published
Nov 12, 2024
A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical. Affected by...
Moderate
Unreviewed
CVE-2024-10919
was published
Nov 6, 2024
Brandon
Rothel from QED Secure Solutions has found that the VAPIX API tcptest.cgi
did not have a...
Moderate
Unreviewed
CVE-2023-5677
was published
Feb 5, 2024
An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector...
Moderate
Unreviewed
CVE-2024-48954
was published
Nov 7, 2024
A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This...
Moderate
Unreviewed
CVE-2024-9793
was published
Oct 10, 2024
A local user with administrative access rights can enter specialy crafted values for settings at...
Moderate
Unreviewed
CVE-2024-8934
was published
Oct 31, 2024
A vulnerability in the cluster backup feature of Cisco Secure Firewall Management Center (FMC)...
Moderate
Unreviewed
CVE-2024-20275
was published
Oct 23, 2024
A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This...
Moderate
Unreviewed
CVE-2005-10003
was published
Oct 17, 2024
A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
Moderate
Unreviewed
CVE-2024-20461
was published
Oct 16, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series...
Moderate
Unreviewed
CVE-2024-20459
was published
Oct 16, 2024
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The...
Moderate
Unreviewed
CVE-2024-22033
was published
Oct 16, 2024
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1...
Moderate
Unreviewed
CVE-2024-9977
was published
Oct 15, 2024
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected...
Moderate
Unreviewed
CVE-2024-9916
was published
Oct 13, 2024
OS command injection vulnerability in WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and...
Moderate
Unreviewed
CVE-2023-49695
was published
Dec 12, 2023
The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This...
Moderate
Unreviewed
CVE-2023-26315
was published
Aug 26, 2024
DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability...
Moderate
Unreviewed
CVE-2024-41585
was published
Oct 3, 2024
An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or...
Moderate
Unreviewed
CVE-2020-21583
was published
Aug 22, 2023
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability....
Moderate
Unreviewed
CVE-2024-23924
was published
Sep 28, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This...
Moderate
Unreviewed
CVE-2024-23961
was published
Sep 28, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue...
Moderate
Unreviewed
CVE-2024-9076
was published
Sep 22, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected...
Moderate
Unreviewed
CVE-2024-9004
was published
Sep 19, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-9001
was published
Sep 19, 2024
The web administration interface in NetModule Router Software (NRSW) 4.6 before 4.6.0.106 and 4.8...
Moderate
Unreviewed
CVE-2023-46306
was published
Oct 22, 2023
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN...
Moderate
Unreviewed
CVE-2024-44072
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API