Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,791 advisories

Loading
Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-8808 was published Nov 22, 2024
Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-8809 was published Nov 22, 2024
Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5719 was published Nov 22, 2024
Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5720 was published Nov 22, 2024
Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-5717 was published Nov 22, 2024
OS command injection vulnerability exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent... High Unreviewed
CVE-2024-31408 was published Nov 22, 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed
CVE-2024-48895 was published Nov 20, 2024
Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library ... High Unreviewed
CVE-2024-11003 was published Nov 19, 2024
A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20... High Unreviewed
CVE-2024-51503 was published Nov 19, 2024
The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the... High Unreviewed
CVE-2024-50809 was published Nov 8, 2024
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an... High Unreviewed
CVE-2022-20655 was published Nov 15, 2024
Wi-Fi Alliance wfa_dut (in Wi-Fi Test Suite) through 9.0.0 allows OS command injection via 802... High Unreviewed
CVE-2024-41992 was published Nov 11, 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed
CVE-2024-45827 was published Nov 12, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11065 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11066 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11062 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11063 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11064 was published Nov 11, 2024
An authorized RCE vulnerability exists in the DrayTek Vigor2960 router version 1.4.4, where an... High Unreviewed
CVE-2024-48074 was published Oct 28, 2024
GoSecure on behalf of Genetec Inc. has found a flaw that allows for a remote code execution... High Unreviewed
CVE-2023-21413 was published Oct 16, 2023
User provided input is not sanitized on the AXIS License Plate Verifier specific “api.cgi”... High Unreviewed
CVE-2023-21410 was published Aug 3, 2023
User provided input is not sanitized in the “Settings > Access Control” configuration interface... High Unreviewed
CVE-2023-21411 was published Aug 3, 2023
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-51023 was published Nov 5, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-51024 was published Nov 5, 2024
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a... High Unreviewed
CVE-2024-51021 was published Nov 5, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database