Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

730 advisories

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ... Critical Unreviewed
CVE-2023-49437 was published Dec 7, 2023
In TOTOLINK X6000R_Firmware V9.4.0cu.852_B20230719, the shttpd file sub_415534 function obtains... Critical Unreviewed
CVE-2023-48801 was published Dec 2, 2023
D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via... Critical Unreviewed
CVE-2023-48842 was published Dec 1, 2023
An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote... Critical Unreviewed
CVE-2023-43454 was published Dec 1, 2023
An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote... Critical Unreviewed
CVE-2023-43455 was published Dec 1, 2023
An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote... Critical Unreviewed
CVE-2023-43453 was published Dec 1, 2023
An issue in Tneda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed
CVE-2023-49040 was published Nov 27, 2023
Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html... Critical Unreviewed
CVE-2023-47253 was published Nov 6, 2023
An OS command injection vulnerability has been reported to affect several QNAP operating system... Critical Unreviewed
CVE-2023-23369 was published Nov 3, 2023
An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary... Critical Unreviewed
CVE-2023-46485 was published Oct 31, 2023
An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary... Critical Unreviewed
CVE-2023-46484 was published Oct 31, 2023
In TOTOLINK A3300R V17.0.0cu.557_B20221024 when dealing with setLedCfg request, there is no... Critical Unreviewed
CVE-2023-46993 was published Oct 31, 2023
TOTOLINK X6000R V9.4.0cu.852_B20230719 was discovered to contain a command injection... Critical Unreviewed
CVE-2023-46979 was published Oct 31, 2023
TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter... Critical Unreviewed
CVE-2023-46976 was published Oct 31, 2023
VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain a command... Critical Unreviewed
CVE-2023-45498 was published Oct 27, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46424 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46419 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46422 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46423 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46417 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46421 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46418 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46420 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46413 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46416 was published Oct 25, 2023
ProTip! Advisories are also available from the GraphQL API