GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,975 advisories
Filter by severity
Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library ...
High
Unreviewed
CVE-2024-11003
was published
Nov 19, 2024
An arbitrary file download vulnerability in the component /Doc/DownloadFile of NUS-M9 ERP...
High
Unreviewed
CVE-2024-44759
was published
Nov 15, 2024
A reachable assertion in the ogs_nas_emm_decode function of Open5GS v2.7.0 allows attackers to...
High
Unreviewed
CVE-2024-24431
was published
Nov 15, 2024
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an...
High
Unreviewed
CVE-2022-20655
was published
Nov 15, 2024
Zoraxy has an authenticated command injection in the Web SSH feature
High
CVE-2024-52010
was published
for
github.com/tobychui/zoraxy
(Go)
Nov 12, 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue...
High
Unreviewed
CVE-2024-45827
was published
Nov 12, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11066
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11063
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11064
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11065
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11062
was published
Nov 11, 2024
Wi-Fi Alliance wfa_dut (in Wi-Fi Test Suite) through 9.0.0 allows OS command injection via 802...
High
Unreviewed
CVE-2024-41992
was published
Nov 11, 2024
The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the...
High
Unreviewed
CVE-2024-50809
was published
Nov 8, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-51024
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52020
was published
Nov 5, 2024
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a...
High
Unreviewed
CVE-2024-51021
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52019
was published
Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52018
was published
Nov 5, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-51023
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52021
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-51005
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-51009
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were...
High
Unreviewed
CVE-2024-51010
was published
Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-51008
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-50993
was published
Nov 5, 2024
ProTip!
Advisories are also available from the
GraphQL API