GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,972
Composer 4,285
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,238
npm 3,741
NuGet 668
pip 3,422
Pub 12
RubyGems 892
Rust 875
Swift 36

Unreviewed advisories

All unreviewed 239,198

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,974 advisories

Filter by severity

Sort by

Least recently updated

IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to... High Unreviewed

CVE-2024-54181 was published Dec 30, 2024

The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command... High Unreviewed

CVE-2024-12856 was published Dec 27, 2024

home 5G HR02 and Wi-Fi STATION SH-54C contain an OS command injection vulnerability in the... High Unreviewed

CVE-2024-54082 was published Dec 23, 2024

home 5G HR02, Wi-Fi STATION SH-52B, and Wi-Fi STATION SH-54C contain an OS command injection... High Unreviewed

CVE-2024-45721 was published Dec 23, 2024

A command injection is possible through the user interface, allowing arbitrary command execution... High Unreviewed

CVE-2020-13712 was published Dec 21, 2024

Arista NG Firewall ExecManagerImpl Command Injection Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12829 was published Dec 20, 2024

An OS command injection (CWE-78) vulnerability in FortiWAN version 4.5.7 and below Command Line... High Unreviewed

CVE-2021-26115 was published Dec 19, 2024

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-48889 was published Dec 18, 2024

An OS command injection vulnerability exists in the web interface configuration upload... High Unreviewed

CVE-2024-21786 was published Dec 18, 2024

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed

CVE-2024-53688 was published Dec 18, 2024

CyberPanel before 2.3.8 allows remote authenticated users to execute arbitrary commands via shell... High Unreviewed

CVE-2024-53376 was published Dec 16, 2024

A flaw was found in Radare2, which contains a command injection vulnerability caused by... High Unreviewed

CVE-2024-11858 was published Dec 15, 2024

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-52058 was published Dec 13, 2024

An authenticated Remote Code Execution (RCE) vulnerability exists in the AirWave CLI. Successful... High Unreviewed

CVE-2024-54008 was published Dec 10, 2024

An unauthenticated attacker with network access to the affected device's web interface can... High Unreviewed

CVE-2024-28138 was published Dec 10, 2024

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on... High Unreviewed

CVE-2024-47115 was published Dec 7, 2024

A command injection vulnerability has been reported to affect License Center. If exploited, the... High Unreviewed

CVE-2024-48863 was published Dec 6, 2024

A command injection vulnerability has been reported to affect several QNAP operating system... High Unreviewed

CVE-2024-50393 was published Dec 6, 2024

UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier allow a remote... High Unreviewed

CVE-2024-47133 was published Dec 5, 2024

IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could... High Unreviewed

CVE-2024-51465 was published Dec 4, 2024

A post-authentication command injection vulnerability in the "host" parameter of the diagnostic... High Unreviewed

CVE-2024-9200 was published Dec 3, 2024

An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed

CVE-2024-53939 was published Dec 3, 2024

An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed

CVE-2024-53940 was published Dec 3, 2024

Authenticated remote code execution (RCE) vulnerabilities affect TP-Link Archer, Deco, and Tapo... High Unreviewed

CVE-2024-53375 was published Dec 3, 2024

Certain models of routers from Billion Electric has an OS Command Injection vulnerability,... High Unreviewed

CVE-2024-11983 was published Nov 29, 2024

Previous 1 2 3 4 5 … 78 79 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,974 advisories