GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,572
Composer 4,205
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,703
NuGet 661
pip 3,329
Pub 11
RubyGems 884
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 234,065

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

321 advisories

Filter by severity

Sort by

Least recently updated

Multiple improper neutralization of special elements used in an OS command ('OS Command Injection... Moderate Unreviewed

CVE-2024-32118 was published Nov 12, 2024

A post-authentication command injection vulnerability in the CGI program in the Zyxel GS1900-48... Moderate Unreviewed

CVE-2024-8881 was published Nov 12, 2024

An issue was discovered in Logpoint before 7.5.0. Unvalidated input during the EventHub Collector... Moderate Unreviewed

CVE-2024-48954 was published Nov 7, 2024

A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical. Affected by... Moderate Unreviewed

CVE-2024-10919 was published Nov 6, 2024

A local user with administrative access rights can enter specialy crafted values for settings at... Moderate Unreviewed

CVE-2024-8934 was published Oct 31, 2024

A vulnerability in the cluster backup feature of Cisco Secure Firewall Management Center (FMC)... Moderate Unreviewed

CVE-2024-20275 was published Oct 23, 2024

A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This... Moderate Unreviewed

CVE-2005-10003 was published Oct 17, 2024

A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series... Moderate Unreviewed

CVE-2024-20459 was published Oct 16, 2024

A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could... Moderate Unreviewed

CVE-2024-20461 was published Oct 16, 2024

The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The... Moderate Unreviewed

CVE-2024-22033 was published Oct 16, 2024

A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1... Moderate Unreviewed

CVE-2024-9977 was published Oct 15, 2024

A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected... Moderate Unreviewed

CVE-2024-9916 was published Oct 13, 2024

A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This... Moderate Unreviewed

CVE-2024-9793 was published Oct 10, 2024

DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability... Moderate Unreviewed

CVE-2024-41585 was published Oct 3, 2024

Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability.... Moderate Unreviewed

CVE-2024-23924 was published Sep 28, 2024

Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This... Moderate Unreviewed

CVE-2024-23961 was published Sep 28, 2024

A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue... Moderate Unreviewed

CVE-2024-9076 was published Sep 22, 2024

A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This... Moderate Unreviewed

CVE-2024-9001 was published Sep 19, 2024

A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected... Moderate Unreviewed

CVE-2024-9004 was published Sep 19, 2024

OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN... Moderate Unreviewed

CVE-2024-44072 was published Sep 10, 2024

A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified as... Moderate Unreviewed

CVE-2024-8574 was published Sep 8, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2024-21906 was published Sep 6, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-34979 was published Sep 6, 2024

A vulnerability in specific CLI commands in Cisco Identity Services Engine (ISE) could allow an... Moderate Unreviewed

CVE-2024-20469 was published Sep 4, 2024

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged,... Moderate Unreviewed

CVE-2024-20289 was published Aug 28, 2024

Previous 1 2 3 4 5 … 12 13 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

321 advisories