Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,906 advisories

Loading
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection... High Unreviewed
CVE-2024-32355 was published May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-32353 was published May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command... Moderate Unreviewed
CVE-2024-32349 was published May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-32354 was published May 14, 2024
A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V5... High Unreviewed
CVE-2024-31485 was published May 14, 2024
An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed
CVE-2024-4712 was published May 14, 2024
TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-34206 was published May 14, 2024
TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection... Low Unreviewed
CVE-2024-34218 was published May 14, 2024
TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-34204 was published May 14, 2024
A Blind command injection vulnerability in Tenda O3V2 V1.0.0.12 and earlier allows remote... High Unreviewed
CVE-2024-34338 was published May 14, 2024
D-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php. Moderate Unreviewed
CVE-2024-33113 was published May 6, 2024
D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Command injection via the hnap_main... Critical Unreviewed
CVE-2024-33112 was published May 6, 2024
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-33788 was published May 6, 2024
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the ipurl... Critical Unreviewed
CVE-2024-33789 was published May 3, 2024
TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An... Moderate Unreviewed
CVE-2024-22546 was published Apr 30, 2024
D-Link DIR-822+ V1.0.5 was found to contain a command injection in SetPlcNetworkpwd function of... High Unreviewed
CVE-2024-33342 was published Apr 26, 2024
D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of... Critical Unreviewed
CVE-2024-33344 was published Apr 26, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Critical Unreviewed
CVE-2024-32766 was published Apr 26, 2024
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject... Moderate Unreviewed
CVE-2024-28328 was published Apr 26, 2024
A Heap Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3... High Unreviewed
CVE-2024-22061 was published Apr 19, 2024
Tenda AC500 V2.0.1.9(1307) firmware contains a command injection vulnerablility in the... Low Unreviewed
CVE-2024-32314 was published Apr 17, 2024
Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the... High Unreviewed
CVE-2024-32292 was published Apr 17, 2024
Tenda AC7V1.0 v15.03.06.44 firmware contains a command injection vulnerablility in formexeCommand... High Unreviewed
CVE-2024-32281 was published Apr 17, 2024
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the... Moderate Unreviewed
CVE-2024-32282 was published Apr 17, 2024
Tenda FH1203 V2.0.1.6 firmware has a command injection vulnerablility in formexeCommand function... High Unreviewed
CVE-2024-32283 was published Apr 17, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database