Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,934
Maven
5,000+
npm
3,668
NuGet
642
pip
3,287
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+

345 advisories

Loading
OS command injection vulnerability in WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and... Moderate Unreviewed
CVE-2023-49695 was published Dec 12, 2023
ggit is vulnerable to Command Injection via the fetchTags(branch) API Moderate
CVE-2024-21532 was published for ggit (npm) Oct 8, 2024
The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This... Moderate Unreviewed
CVE-2023-26315 was published Aug 26, 2024
DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability... Moderate Unreviewed
CVE-2024-41585 was published Oct 3, 2024
An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or... Moderate Unreviewed
CVE-2020-21583 was published Aug 22, 2023
git-shallow-clone OS Command Injection vulnerability Moderate
CVE-2024-21531 was published for git-shallow-clone (npm) Oct 1, 2024
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability.... Moderate Unreviewed
CVE-2024-23924 was published Sep 28, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-23961 was published Sep 28, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2024-9076 was published Sep 22, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-9001 was published Sep 19, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected... Moderate Unreviewed
CVE-2024-9004 was published Sep 19, 2024
Remote Code Execution in create_conda_env function in lollms Moderate
CVE-2024-3121 was published for lollms (pip) Jun 24, 2024
The web administration interface in NetModule Router Software (NRSW) 4.6 before 4.6.0.106 and 4.8... Moderate Unreviewed
CVE-2023-46306 was published Oct 22, 2023
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN... Moderate Unreviewed
CVE-2024-44072 was published Sep 10, 2024
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified as... Moderate Unreviewed
CVE-2024-8574 was published Sep 8, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2024-21906 was published Sep 6, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-34979 was published Sep 6, 2024
Post-authentication remote command injection vulnerabilities in Western Digital My Cloud OS 5... Moderate Unreviewed
CVE-2023-22815 was published Jul 1, 2023
A vulnerability in specific CLI commands in Cisco Identity Services Engine (ISE) could allow an... Moderate Unreviewed
CVE-2024-20469 was published Sep 4, 2024
A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320,... Moderate Unreviewed
CVE-2024-8214 was published Aug 27, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,... Moderate Unreviewed
CVE-2024-8211 was published Aug 27, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,... Moderate Unreviewed
CVE-2024-8210 was published Aug 27, 2024
A vulnerability classified as critical has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS... Moderate Unreviewed
CVE-2024-8213 was published Aug 27, 2024
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent... Moderate Unreviewed
CVE-2024-25579 was published Feb 29, 2024
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged,... Moderate Unreviewed
CVE-2024-20289 was published Aug 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database