Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,097
Erlang
29
GitHub Actions
19
Go
1,925
Maven
5,000+
npm
3,657
NuGet
638
pip
3,264
Pub
10
RubyGems
873
Rust
823
Swift
35
Unreviewed advisories
All unreviewed
5,000+

1,025 advisories

Loading
Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_unzip... High Unreviewed
CVE-2024-46084 was published Oct 1, 2024
Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz (legacy) Visual... High Unreviewed
CVE-2024-9145 was published Oct 1, 2024
There is a command injection vulnerability that may allow an attacker to inject malicious input... High Unreviewed
CVE-2024-45682 was published Sep 17, 2024
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an... High Unreviewed
CVE-2024-39577 was published Sep 26, 2024
Command Injection in Nuitka High
CVE-2022-2054 was published for Nuitka (pip) Jun 13, 2022
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack... High Unreviewed
CVE-2024-7575 was published Sep 25, 2024
In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection... High Unreviewed
CVE-2024-7679 was published Sep 25, 2024
A10 Thunder ADC CsrRequestView Command Injection Remote Code Execution Vulnerability. This... High Unreviewed
CVE-2024-30368 was published Jun 6, 2024
An authenticated user can execute arbitrary command in Gerapy High
CVE-2021-32849 was published for gerapy (pip) Jan 6, 2022
A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi... High Unreviewed
CVE-2024-42025 was published Sep 13, 2024
Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands High
CVE-2024-41815 was published for starship (Rust) Jul 26, 2024
evanbattaglia
An OS command injection vulnerability has been reported to affect several QNAP operating system... High Unreviewed
CVE-2024-38641 was published Sep 6, 2024
LoLLMS Command Injection vulnerability High
CVE-2024-4078 was published for lollms (pip) May 16, 2024
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i High Unreviewed
CVE-2024-46048 was published Sep 13, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17... High Unreviewed
CVE-2024-8640 was published Sep 12, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the... High Unreviewed
CVE-2024-44570 was published Sep 11, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-44572 was published Sep 11, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-44577 was published Sep 11, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-44574 was published Sep 11, 2024
Remote code execution (RCE) in Apache Airflow High
CVE-2020-11978 was published for apache-airflow (pip) Jul 27, 2020
sunSUNQ
DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection... High Unreviewed
CVE-2024-44844 was published Sep 6, 2024
DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection... High Unreviewed
CVE-2024-44845 was published Sep 6, 2024
Command Injection vulnerability in goform/SetIPTVCfg interface of Tenda AC15 V15.03.05.20 allows... High Unreviewed
CVE-2023-36103 was published Sep 10, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38228 was published Sep 10, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed
CVE-2024-38227 was published Sep 10, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database