GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,079 advisories
Filter by severity
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228 and classified as...
Moderate
Unreviewed
CVE-2024-8075
was published
Aug 22, 2024
A vulnerability was found in TOTOLINK AC1200 T8 4.1.5cu.862_B20230228. It has been classified as...
Moderate
Unreviewed
CVE-2024-8077
was published
Aug 22, 2024
Magnet Forensics AXIOM Command Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-7448
was published
Aug 21, 2024
SSH authenticated user when access the PAM server can execute an OS command to gain the full...
High
Unreviewed
CVE-2020-11847
was published
Aug 21, 2024
A Command Injection vulnerability exists in the do_upgrade_post function of the httpd binary in...
High
Unreviewed
CVE-2024-42633
was published
Aug 19, 2024
Command injection vulnerability in Asus RT-N15U 3.0.0.4.376_3754 allows a remote attacker to...
Critical
Unreviewed
CVE-2024-42757
was published
Aug 15, 2024
Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows...
Critical
Unreviewed
CVE-2024-23789
was published
Aug 14, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
High
Unreviewed
CVE-2024-39401
was published
Aug 14, 2024
Adobe Commerce versions 2.4.7-p1, 2.4.6-p6, 2.4.5-p8, 2.4.4-p9 and earlier are affected by an...
High
Unreviewed
CVE-2024-39402
was published
Aug 14, 2024
The specific CGI of the CAYIN Technology CMS does not properly validate user input, allowing a...
High
Unreviewed
CVE-2024-7728
was published
Aug 14, 2024
A improper neutralization of special elements used in an os command ('os command injection') in...
Moderate
Unreviewed
CVE-2022-27486
was published
Aug 13, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42737
was published
Aug 13, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
Moderate
Unreviewed
CVE-2024-42740
was published
Aug 13, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42738
was published
Aug 13, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42739
was published
Aug 13, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42736
was published
Aug 13, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42744
was published
Aug 12, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42748
was published
Aug 12, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42747
was published
Aug 12, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42741
was published
Aug 12, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42742
was published
Aug 12, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42745
was published
Aug 12, 2024
In TOTOLINK X5000r v9.1.0cu.2350_b20230313, the file /cgi-bin/cstecgi.cgi contains an OS command...
High
Unreviewed
CVE-2024-42743
was published
Aug 12, 2024
Multiple authenticated operating system (OS) command injection vulnerabilities exist in Firewalla...
Moderate
Unreviewed
CVE-2024-40893
was published
Aug 12, 2024
An OS command injection vulnerability in the ccm_debug component of MIPC Camera firmware prior to...
High
Unreviewed
CVE-2024-39091
was published
Aug 12, 2024
ProTip!
Advisories are also available from the
GraphQL API