GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,913 advisories
Filter by severity
A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated,...
Moderate
Unreviewed
CVE-2024-20492
was published
Oct 2, 2024
A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco...
Moderate
Unreviewed
CVE-2024-20365
was published
Oct 2, 2024
A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC)...
Critical
Unreviewed
CVE-2024-20432
was published
Oct 2, 2024
Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_unzip...
High
Unreviewed
CVE-2024-46084
was published
Oct 1, 2024
PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to...
Moderate
Unreviewed
CVE-2024-44610
was published
Oct 1, 2024
Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz (legacy) Visual...
High
Unreviewed
CVE-2024-9145
was published
Oct 1, 2024
A Command injection vulnerability in requestLetsEncryptSsl in NginxProxyManager 2.11.3 allows an...
Critical
Unreviewed
CVE-2024-46256
was published
Sep 27, 2024
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an...
High
Unreviewed
CVE-2024-39577
was published
Sep 26, 2024
Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information...
Moderate
Unreviewed
CVE-2024-45989
was published
Sep 26, 2024
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows...
Moderate
Unreviewed
CVE-2024-8405
was published
Sep 26, 2024
In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection...
High
Unreviewed
CVE-2024-7679
was published
Sep 25, 2024
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack...
High
Unreviewed
CVE-2024-7575
was published
Sep 25, 2024
A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE
UTILITY sub-menu can allow a...
Critical
Unreviewed
CVE-2024-43693
was published
Sep 25, 2024
A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP
sub-menu can allow a...
Critical
Unreviewed
CVE-2024-45066
was published
Sep 25, 2024
Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated...
Critical
Unreviewed
CVE-2024-42505
was published
Sep 25, 2024
Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated...
Critical
Unreviewed
CVE-2024-42506
was published
Sep 25, 2024
Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated...
Critical
Unreviewed
CVE-2024-42507
was published
Sep 25, 2024
A condition exists in FlashArray and FlashBlade Purity whereby a malicious user could execute...
Critical
Unreviewed
CVE-2024-0005
was published
Sep 23, 2024
Xiaomi Router AX9000 has a post-authorization command injection vulnerability. This vulnerability...
Moderate
Unreviewed
CVE-2024-45348
was published
Sep 23, 2024
There is a command injection vulnerability that may allow an attacker to inject malicious input...
High
Unreviewed
CVE-2024-45682
was published
Sep 17, 2024
A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi...
High
Unreviewed
CVE-2024-42025
was published
Sep 13, 2024
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i
High
Unreviewed
CVE-2024-46048
was published
Sep 13, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17...
High
Unreviewed
CVE-2024-8640
was published
Sep 12, 2024
CVE-2024-45824 IMPACT
A remote
code vulnerability exists in the affected products. The...
Critical
Unreviewed
CVE-2024-45824
was published
Sep 12, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-44572
was published
Sep 11, 2024
ProTip!
Advisories are also available from the
GraphQL API