GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,775 advisories
Filter by severity
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability....
Moderate
Unreviewed
CVE-2024-23924
was published
Sep 28, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This...
Moderate
Unreviewed
CVE-2024-23961
was published
Sep 28, 2024
An issue in Plasmoapp RPShare Fabric mod v.1.0.0 allows a remote attacker to execute arbitrary...
High
Unreviewed
CVE-2024-33368
was published
Sep 27, 2024
There is a command injection vulnerability that may allow an attacker to inject malicious input...
High
Unreviewed
CVE-2024-45682
was published
Sep 17, 2024
FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an...
High
Unreviewed
CVE-2024-36475
was published
Jul 17, 2024
Tenda G3 Router firmware v15.03.05.05 was discovered to contain a remote code execution (RCE)...
High
Unreviewed
CVE-2024-46628
was published
Sep 26, 2024
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-46330
was published
Sep 26, 2024
VONETS VAP11G-300 v3.3.23.6.9 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-46329
was published
Sep 26, 2024
The device enables an unauthorized attacker to execute system commands with elevated privileges....
Critical
Unreviewed
CVE-2024-9166
was published
Sep 26, 2024
Gigastone TR1 Travel Router R101 v1.0.2 is vulnerable to Command Injection. This allows an...
High
Unreviewed
CVE-2024-44678
was published
Sep 25, 2024
An issue in PGYER codefever v.2023.8.14-2ce4006 allows a remote attacker to execute arbitrary...
Critical
Unreviewed
CVE-2023-44080
was published
Sep 28, 2023
A10 Thunder ADC CsrRequestView Command Injection Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-30368
was published
Jun 6, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue...
Moderate
Unreviewed
CVE-2024-9076
was published
Sep 22, 2024
Certain models of D-Link wireless routers do not properly validate user input in the telnet...
High
Unreviewed
CVE-2024-45698
was published
Sep 16, 2024
Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow...
High
Unreviewed
CVE-2023-34116
was published
Jul 11, 2023
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected...
Moderate
Unreviewed
CVE-2024-9004
was published
Sep 19, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-9001
was published
Sep 19, 2024
Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This...
Critical
Unreviewed
CVE-2024-7591
was published
Sep 5, 2024
OS command injection vulnerability in multiple digital video recorders provided by TAKENAKA...
High
Unreviewed
CVE-2024-43778
was published
Sep 18, 2024
Authenticated command execution vulnerability exist in the ArubaOS command line interface (CLI)....
High
Unreviewed
CVE-2024-42503
was published
Sep 17, 2024
Authenticated command injection vulnerability exists in the ArubaOS command line interface....
High
Unreviewed
CVE-2024-42502
was published
Sep 17, 2024
PTZOptics PT30X-SDI/NDI-xx before firmware 6.3.40 is vulnerable to an OS command injection issue....
High
Unreviewed
CVE-2024-8957
was published
Sep 17, 2024
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x...
Critical
Unreviewed
CVE-2022-30311
was published
Jun 14, 2022
In Festo Controller CECC-X-M1 product family in multiple versions, the http-endpoint "cecc-x-web...
Critical
Unreviewed
CVE-2022-30309
was published
Jun 14, 2022
A vulnerability classified as critical has been found in TOTOLINK A720R 4.1.5. Affected is the...
Low
Unreviewed
CVE-2024-8869
was published
Sep 16, 2024
ProTip!
Advisories are also available from the
GraphQL API