GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
783 advisories
Filter by severity
Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ...
Critical
Unreviewed
CVE-2023-49437
was published
Dec 7, 2023
In TOTOLINK X6000R_Firmware V9.4.0cu.852_B20230719, the shttpd file sub_415534 function obtains...
Critical
Unreviewed
CVE-2023-48801
was published
Dec 2, 2023
D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via...
Critical
Unreviewed
CVE-2023-48842
was published
Dec 1, 2023
An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote...
Critical
Unreviewed
CVE-2023-43454
was published
Dec 1, 2023
An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote...
Critical
Unreviewed
CVE-2023-43455
was published
Dec 1, 2023
An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote...
Critical
Unreviewed
CVE-2023-43453
was published
Dec 1, 2023
An issue in Tneda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the...
Critical
Unreviewed
CVE-2023-49040
was published
Nov 27, 2023
Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html...
Critical
Unreviewed
CVE-2023-47253
was published
Nov 6, 2023
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Critical
Unreviewed
CVE-2023-23369
was published
Nov 3, 2023
An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary...
Critical
Unreviewed
CVE-2023-46485
was published
Oct 31, 2023
An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary...
Critical
Unreviewed
CVE-2023-46484
was published
Oct 31, 2023
In TOTOLINK A3300R V17.0.0cu.557_B20221024 when dealing with setLedCfg request, there is no...
Critical
Unreviewed
CVE-2023-46993
was published
Oct 31, 2023
TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter...
Critical
Unreviewed
CVE-2023-46976
was published
Oct 31, 2023
TOTOLINK X6000R V9.4.0cu.852_B20230719 was discovered to contain a command injection...
Critical
Unreviewed
CVE-2023-46979
was published
Oct 31, 2023
tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a...
Critical
Unreviewed
CVE-2023-47104
was published
Oct 30, 2023
VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain a command...
Critical
Unreviewed
CVE-2023-45498
was published
Oct 27, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46418
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46423
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46420
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46417
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46422
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46421
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46419
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)...
Critical
Unreviewed
CVE-2023-46424
was published
Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution...
Critical
Unreviewed
CVE-2023-46411
was published
Oct 25, 2023
ProTip!
Advisories are also available from the
GraphQL API