GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,081
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,642
NuGet
638
pip
3,258
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,220 advisories
Filter by severity
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-8133
was published
Aug 24, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-8132
was published
Aug 24, 2024
A vulnerability, which was classified as critical, has been found in D-Link DNS-120, DNR-202L,...
Moderate
Unreviewed
CVE-2024-8128
was published
Aug 24, 2024
A vulnerability, which was classified as critical, was found in D-Link DNS-120, DNR-202L, DNS...
Moderate
Unreviewed
CVE-2024-8129
was published
Aug 24, 2024
There is a command injection vulnerability in some Hikvision NVRs. This could allow an...
High
Unreviewed
CVE-2024-29949
was published
Apr 2, 2024
A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320,...
Moderate
Unreviewed
CVE-2024-8127
was published
Aug 24, 2024
Vinchin Backup and Recovery 7.2 and Earlier is vulnerable to Authenticated Remote Code Execution ...
High
Unreviewed
CVE-2024-25228
was published
Mar 14, 2024
DrayTek Vigor 3900 before v1.5.1.5_Beta, DrayTek Vigor 2960 before v1.5.1.5_Beta and DrayTek...
High
Unreviewed
CVE-2024-43027
was published
Aug 21, 2024
DedeCMS V5.7.115 has a command execution vulnerability via file_manage_view.php?fmdo=newfile...
High
Unreviewed
CVE-2024-42636
was published
Aug 23, 2024
D-Link DI_8004W 16.07.26A1 contains a command execution vulnerability in jhttpd msp_info_htm...
High
Unreviewed
CVE-2024-44381
was published
Aug 23, 2024
D-Link DI_8004W 16.07.26A1 contains a command execution vulnerability in the jhttpd...
High
Unreviewed
CVE-2024-44382
was published
Aug 23, 2024
DIR-845L router <= v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the...
Critical
Unreviewed
CVE-2024-29385
was published
Mar 22, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
Critical
Unreviewed
CVE-2024-21878
was published
Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-21880
was published
Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-21879
was published
Aug 12, 2024
Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the...
Critical
Unreviewed
CVE-2024-25850
was published
Feb 22, 2024
An issue was discovered in GitLab EE affecting all versions starting 17.0 to 17.1.6, 17.2 prior...
Moderate
Unreviewed
CVE-2024-7110
was published
Aug 22, 2024
A command injection issue in Palo Alto Networks Cortex XSOAR CommonScripts Pack allows an...
High
Unreviewed
CVE-2024-5914
was published
Aug 14, 2024
Stormshield Network Security (SNS) before 4.2.2 allows a read-only administrator to gain...
High
Unreviewed
CVE-2021-28962
was published
Feb 1, 2022
A command injection vulnerability exists in /goform/exeCommand in Tenda AC18 v15.03.05.05, which...
High
Unreviewed
CVE-2024-30891
was published
Apr 5, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-7922
was published
Aug 19, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu...
Moderate
Unreviewed
CVE-2024-7907
was published
Aug 18, 2024
A vulnerability classified as critical has been found in Tosei Online Store Management System...
Moderate
Unreviewed
CVE-2024-7897
was published
Aug 17, 2024
A vulnerability was found in Tosei Online Store Management System ネット店舗管理システム 4.02/4.03/4.04. It...
Moderate
Unreviewed
CVE-2024-7896
was published
Aug 17, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
Critical
Unreviewed
CVE-2024-37091
was published
Jun 24, 2024
ProTip!
Advisories are also available from the
GraphQL API