Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
1,998
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,923 advisories

Loading
OS command injection vulnerability exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent... High Unreviewed
CVE-2024-31408 was published Nov 22, 2024
LLama Factory Remote OS Command Injection Vulnerability High
CVE-2024-52803 was published for llamafactory (pip) Nov 21, 2024
superboy-zjc
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed
CVE-2024-48895 was published Nov 20, 2024
A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20... High Unreviewed
CVE-2024-51503 was published Nov 19, 2024
Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library ... High Unreviewed
CVE-2024-11003 was published Nov 19, 2024
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an... High Unreviewed
CVE-2022-20655 was published Nov 15, 2024
Zoraxy has an authenticated command injection in the Web SSH feature High
CVE-2024-52010 was published for github.com/tobychui/zoraxy (Go) Nov 12, 2024
n-thumann
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed
CVE-2024-45827 was published Nov 12, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11066 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11065 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11063 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11064 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11062 was published Nov 11, 2024
Wi-Fi Alliance wfa_dut (in Wi-Fi Test Suite) through 9.0.0 allows OS command injection via 802... High Unreviewed
CVE-2024-41992 was published Nov 11, 2024
The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the... High Unreviewed
CVE-2024-50809 was published Nov 8, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-51023 was published Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52018 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52019 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52020 was published Nov 5, 2024
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a... High Unreviewed
CVE-2024-51021 was published Nov 5, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-51024 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52021 was published Nov 5, 2024
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were... High Unreviewed
CVE-2024-51010 was published Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-51008 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-51005 was published Nov 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database