GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
3,104 advisories
Filter by severity
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-21879
was published
Aug 12, 2024
Withdrawn Advisory: Litestar has an environment Variable injection in `docs-preview.yml` workflow
High
CVE-2024-42370
was published
for
litestar
(pip)
Aug 9, 2024
•
withdrawn
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been rated as...
Moderate
Unreviewed
CVE-2024-7580
was published
Aug 7, 2024
A vulnerability was found in Alien Technology ALR-F800 up to 19.10.24.00. It has been declared as...
Moderate
Unreviewed
CVE-2024-7579
was published
Aug 7, 2024
GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000...
Critical
Unreviewed
CVE-2024-39228
was published
Aug 6, 2024
An Improper Input Validation vulnerability in Zscaler Client Connector on MacOS allows OS Command...
High
Unreviewed
CVE-2024-23483
was published
Aug 6, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been...
Moderate
Unreviewed
CVE-2024-7469
was published
Aug 5, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been...
Moderate
Unreviewed
CVE-2024-7470
was published
Aug 5, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90. It has been...
Moderate
Unreviewed
CVE-2024-7468
was published
Aug 5, 2024
A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200 and MSG2300 3.90 and classified...
Moderate
Unreviewed
CVE-2024-7467
was published
Aug 5, 2024
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly...
Critical
Unreviewed
CVE-2024-38887
was published
Aug 2, 2024
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly...
Critical
Unreviewed
CVE-2024-38889
was published
Aug 2, 2024
Cosy+ devices running a firmware 21.x below 21.2s10 or a firmware 22.x below 22.1s3 are...
High
Unreviewed
CVE-2024-33896
was published
Aug 2, 2024
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly...
Critical
Unreviewed
CVE-2024-38882
was published
Aug 2, 2024
soft-serve vulnerable to arbitrary code execution by crafting git-lfs requests
High
CVE-2024-41956
was published
for
github.com/charmbracelet/soft-serve
(Go)
Aug 2, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DIR-600 up to 2.18. It has...
Moderate
Unreviewed
CVE-2024-7357
was published
Aug 1, 2024
OS command injection vulnerability exists in ELECOM wireless LAN routers. A specially crafted...
Moderate
Unreviewed
CVE-2024-39607
was published
Aug 1, 2024
FFRI AMC versions 3.4.0 to 3.5.3 and some OEM products that implement/bundle FFRI AMC versions 3...
Moderate
Unreviewed
CVE-2024-40895
was published
Jul 30, 2024
A vulnerability has been found in TOTOLINK A3600R 4.1.2cu.5182_B20201102 and classified as...
Moderate
Unreviewed
CVE-2024-7175
was published
Jul 29, 2024
The web services of Softnext's products, Mail SQR Expert and Mail Archiving Expert do not...
Critical
Unreviewed
CVE-2024-5670
was published
Jul 29, 2024
A vulnerability classified as critical has been found in TOTOLINK A3600R 4.1.2cu.5182_B20201102....
Moderate
Unreviewed
CVE-2024-7171
was published
Jul 29, 2024
xdg-desktop-portal-hyprland (aka an XDG Desktop Portal backend for Hyprland) before 1.3.3 allows...
Moderate
Unreviewed
CVE-2024-42029
was published
Jul 27, 2024
A privilege escalation vulnerability was discovered in an upload processing functionality of XCC...
High
Unreviewed
CVE-2024-38511
was published
Jul 26, 2024
A privilege escalation vulnerability was discovered in XCC that could allow an authenticated XCC...
High
Unreviewed
CVE-2024-38512
was published
Jul 26, 2024
A privilege escalation vulnerability was discovered in the SSH captive command shell interface...
High
Unreviewed
CVE-2024-38510
was published
Jul 26, 2024
ProTip!
Advisories are also available from the
GraphQL API