Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,090
Erlang
29
GitHub Actions
19
Go
1,915
Maven
5,000+
npm
3,646
NuGet
638
pip
3,262
Pub
10
RubyGems
870
Rust
821
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,106 advisories

Loading
git-shallow-clone OS Command Injection vulnerability Moderate
CVE-2024-21531 was published for git-shallow-clone (npm) Oct 1, 2024
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability.... Moderate Unreviewed
CVE-2024-23924 was published Sep 28, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-23961 was published Sep 28, 2024
An issue in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary... High Unreviewed
CVE-2024-33368 was published Sep 27, 2024
Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE)... High Unreviewed
CVE-2024-46628 was published Sep 26, 2024
The device enables an unauthorized attacker to execute system commands with elevated privileges.... Critical Unreviewed
CVE-2024-9166 was published Sep 26, 2024
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-46330 was published Sep 26, 2024
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-46329 was published Sep 26, 2024
Gigastone TR1 Travel Router R101 v1.0.2 is vulnerable to Command Injection. This allows an... High Unreviewed
CVE-2024-44678 was published Sep 25, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2024-9076 was published Sep 22, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected... Moderate Unreviewed
CVE-2024-9004 was published Sep 19, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-9001 was published Sep 19, 2024
Chaosblade vulnerable to OS command execution Critical
CVE-2023-47105 was published for github.com/chaosblade-io/chaosblade (Go) Sep 18, 2024
OS command injection vulnerability in multiple digital video recorders provided by TAKENAKA... High Unreviewed
CVE-2024-43778 was published Sep 18, 2024
PTZOptics PT30X-SDI/NDI-xx before firmware 6.3.40 is vulnerable to an OS command injection issue.... High Unreviewed
CVE-2024-8957 was published Sep 17, 2024
Authenticated command execution vulnerability exist in the ArubaOS command line interface (CLI).... High Unreviewed
CVE-2024-42503 was published Sep 17, 2024
Authenticated command injection vulnerability exists in the ArubaOS command line interface.... High Unreviewed
CVE-2024-42502 was published Sep 17, 2024
There is a command injection vulnerability that may allow an attacker to inject malicious input... High Unreviewed
CVE-2024-45682 was published Sep 17, 2024
Certain models of D-Link wireless routers do not properly validate user input in the telnet... High Unreviewed
CVE-2024-45698 was published Sep 16, 2024
A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the... Low Unreviewed
CVE-2024-8869 was published Sep 16, 2024
An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC... High Unreviewed
CVE-2024-8281 was published Sep 13, 2024
An input validation weakness was discovered in XCC that could allow a valid, authenticated XCC... High Unreviewed
CVE-2024-8280 was published Sep 13, 2024
A privilege escalation vulnerability was discovered in XCC that could allow a valid,... High Unreviewed
CVE-2024-8278 was published Sep 13, 2024
A privilege escalation vulnerability was discovered in XCC that could allow a valid,... High Unreviewed
CVE-2024-8279 was published Sep 13, 2024
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker... High Unreviewed
CVE-2024-20398 was published Sep 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database