Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,988
Erlang
29
GitHub Actions
16
Go
1,776
Maven
5,000+
npm
3,542
NuGet
617
pip
3,125
Pub
10
RubyGems
838
Rust
790
Swift
34
Unreviewed advisories
All unreviewed
5,000+

223 advisories

Loading
In streampark, the project module integrates Maven's compilation capabilities. The input... Moderate Unreviewed
CVE-2023-52291 was published Jul 17, 2024
In streampark, the project module integrates Maven's compilation capabilities. The input... Moderate Unreviewed
CVE-2024-29737 was published Jul 17, 2024
WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin... Moderate Unreviewed
CVE-2024-38894 was published Jun 24, 2024
WAVLINK WN551K1 found a command injection vulnerability through the start_hour parameter of /cgi... Moderate Unreviewed
CVE-2024-38896 was published Jun 24, 2024
H3C Magic R230 V100R002's udpserver opens port 9034, allowing attackers to execute arbitrary... Moderate Unreviewed
CVE-2024-38903 was published Jun 24, 2024
A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2024-6269 was published Jun 23, 2024
A vulnerability was found in Arris VAP2500 08.50. It has been declared as critical. Affected by... Moderate Unreviewed
CVE-2024-5194 was published May 22, 2024
A vulnerability classified as critical has been found in Arris VAP2500 08.50. This affects an... Moderate Unreviewed
CVE-2024-5196 was published May 22, 2024
A vulnerability was found in Arris VAP2500 08.50. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2024-5195 was published May 22, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command... Moderate Unreviewed
CVE-2024-32349 was published May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-32354 was published May 14, 2024
TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-34206 was published May 14, 2024
1Panel arbitrary file write vulnerability Moderate
CVE-2024-34352 was published for github.com/1Panel-dev/1Panel (Go) May 9, 2024
an5er
D-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php. Moderate Unreviewed
CVE-2024-33113 was published May 6, 2024
TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An... Moderate Unreviewed
CVE-2024-22546 was published Apr 30, 2024
dcnnt-py is vulnerable to command injection via Notification Handler Moderate
CVE-2023-1000 was published for dcnnt (pip) Apr 27, 2024
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject... Moderate Unreviewed
CVE-2024-28328 was published Apr 26, 2024
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart... Moderate Unreviewed
CVE-2023-40146 was published Apr 17, 2024
A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). Affected is... Moderate Unreviewed
CVE-2024-3908 was published Apr 17, 2024
gix-transport indirect code execution via malicious username Moderate
CVE-2024-32884 was published for gitoxide (Rust) Apr 15, 2024
EliahKagan
A vulnerability has been found in Tenda FH1205 2.0.0.7(775) and classified as critical. Affected... Moderate Unreviewed
CVE-2024-3009 was published Mar 28, 2024
A vulnerability has been found in Tenda FH1203 2.0.1.6 and classified as critical. This... Moderate Unreviewed
CVE-2024-2991 was published Mar 27, 2024
A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected... Moderate Unreviewed
CVE-2024-2982 was published Mar 27, 2024
1Panel is vulnerable to command injection Moderate
CVE-2024-2352 was published for github.com/1Panel-dev/1Panel (Go) Mar 10, 2024
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as... Moderate Unreviewed
CVE-2024-1781 was published Feb 23, 2024
ProTip! Advisories are also available from the GraphQL API