GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,131
Erlang
29
GitHub Actions
19
Go
1,934
Maven
5,000+
npm
3,668
NuGet
642
pip
3,287
Pub
10
RubyGems
873
Rust
828
Swift
35
Unreviewed advisories
All unreviewed
5,000+
345 advisories
Filter by severity
OS command injection vulnerability in WRC-X3000GSN v1.0.2, WRC-X3000GS v1.0.24 and earlier, and...
Moderate
Unreviewed
CVE-2023-49695
was published
Dec 12, 2023
ggit is vulnerable to Command Injection via the fetchTags(branch) API
Moderate
CVE-2024-21532
was published
for
ggit
(npm)
Oct 8, 2024
The Xiaomi router AX9000 has a post-authentication command injection vulnerability. This...
Moderate
Unreviewed
CVE-2023-26315
was published
Aug 26, 2024
DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability...
Moderate
Unreviewed
CVE-2024-41585
was published
Oct 3, 2024
An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or...
Moderate
Unreviewed
CVE-2020-21583
was published
Aug 22, 2023
git-shallow-clone OS Command Injection vulnerability
Moderate
CVE-2024-21531
was published
for
git-shallow-clone
(npm)
Oct 1, 2024
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability....
Moderate
Unreviewed
CVE-2024-23924
was published
Sep 28, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This...
Moderate
Unreviewed
CVE-2024-23961
was published
Sep 28, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue...
Moderate
Unreviewed
CVE-2024-9076
was published
Sep 22, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-9001
was published
Sep 19, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected...
Moderate
Unreviewed
CVE-2024-9004
was published
Sep 19, 2024
Remote Code Execution in create_conda_env function in lollms
Moderate
CVE-2024-3121
was published
for
lollms
(pip)
Jun 24, 2024
The web administration interface in NetModule Router Software (NRSW) 4.6 before 4.6.0.106 and 4.8...
Moderate
Unreviewed
CVE-2023-46306
was published
Oct 22, 2023
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN...
Moderate
Unreviewed
CVE-2024-44072
was published
Sep 10, 2024
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified as...
Moderate
Unreviewed
CVE-2024-8574
was published
Sep 8, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2024-21906
was published
Sep 6, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-34979
was published
Sep 6, 2024
Post-authentication remote command injection vulnerabilities in Western Digital My Cloud OS 5...
Moderate
Unreviewed
CVE-2023-22815
was published
Jul 1, 2023
A vulnerability in specific CLI commands in Cisco Identity Services Engine (ISE) could allow an...
Moderate
Unreviewed
CVE-2024-20469
was published
Sep 4, 2024
A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320,...
Moderate
Unreviewed
CVE-2024-8214
was published
Aug 27, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-8211
was published
Aug 27, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-8210
was published
Aug 27, 2024
A vulnerability classified as critical has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS...
Moderate
Unreviewed
CVE-2024-8213
was published
Aug 27, 2024
OS command injection vulnerability in ELECOM wireless LAN routers allows a network-adjacent...
Moderate
Unreviewed
CVE-2024-25579
was published
Feb 29, 2024
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged,...
Moderate
Unreviewed
CVE-2024-20289
was published
Aug 28, 2024
ProTip!
Advisories are also available from the
GraphQL API