GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,655
NuGet
638
pip
3,263
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
270 advisories
Filter by severity
A vulnerability was found in Arris VAP2500 08.50. It has been declared as critical. Affected by...
Moderate
Unreviewed
CVE-2024-5194
was published
May 22, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection...
Moderate
Unreviewed
CVE-2024-32354
was published
May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command...
Moderate
Unreviewed
CVE-2024-32349
was published
May 14, 2024
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows...
Moderate
Unreviewed
CVE-2024-4712
was published
May 14, 2024
TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection...
Moderate
Unreviewed
CVE-2024-34206
was published
May 14, 2024
1Panel arbitrary file write vulnerability
Moderate
CVE-2024-34352
was published
for
github.com/1Panel-dev/1Panel
(Go)
May 9, 2024
D-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php.
Moderate
Unreviewed
CVE-2024-33113
was published
May 6, 2024
TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An...
Moderate
Unreviewed
CVE-2024-22546
was published
Apr 30, 2024
dcnnt-py is vulnerable to command injection via Notification Handler
Moderate
CVE-2023-1000
was published
for
dcnnt
(pip)
Apr 27, 2024
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject...
Moderate
Unreviewed
CVE-2024-28328
was published
Apr 26, 2024
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the...
Moderate
Unreviewed
CVE-2024-32282
was published
Apr 17, 2024
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart...
Moderate
Unreviewed
CVE-2023-40146
was published
Apr 17, 2024
A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). Affected is...
Moderate
Unreviewed
CVE-2024-3908
was published
Apr 17, 2024
gix-transport indirect code execution via malicious username
Moderate
CVE-2024-32884
was published
for
gitoxide
(Rust)
Apr 15, 2024
An issue discovered in Alldata v0.4.6 allows attacker to run arbitrary commands via the processId...
Moderate
Unreviewed
CVE-2024-29435
was published
Apr 1, 2024
A vulnerability has been found in Tenda FH1205 2.0.0.7(775) and classified as critical. Affected...
Moderate
Unreviewed
CVE-2024-3009
was published
Mar 28, 2024
A vulnerability has been found in Tenda FH1203 2.0.1.6 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-2991
was published
Mar 27, 2024
A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected...
Moderate
Unreviewed
CVE-2024-2982
was published
Mar 27, 2024
1Panel is vulnerable to command injection
Moderate
CVE-2024-2352
was published
for
github.com/1Panel-dev/1Panel
(Go)
Mar 10, 2024
An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via...
Moderate
Unreviewed
CVE-2023-51835
was published
Feb 29, 2024
Splinefont in FontForge through 20230101 allows command injection via crafted filenames.
Moderate
Unreviewed
CVE-2024-25081
was published
Feb 26, 2024
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as...
Moderate
Unreviewed
CVE-2024-1781
was published
Feb 23, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-47218
was published
Feb 13, 2024
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network...
Moderate
Unreviewed
CVE-2023-49716
was published
Feb 9, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41283
was published
Feb 2, 2024
ProTip!
Advisories are also available from the
GraphQL API