GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,513

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,668 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500... High Unreviewed

CVE-2025-54403 was published Oct 7, 2025

Multiple OS command injection vulnerabilities exist in the swctrl functionality of Planet WGR-500... High Unreviewed

CVE-2025-54404 was published Oct 7, 2025

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet... High Unreviewed

CVE-2025-54405 was published Oct 7, 2025

Multiple OS command injection vulnerabilities exist in the formPingCmd functionality of Planet... High Unreviewed

CVE-2025-54406 was published Oct 7, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... High Unreviewed

CVE-2025-60959 was published Oct 6, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... High Unreviewed

CVE-2025-60963 was published Oct 6, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... Critical Unreviewed

CVE-2025-60964 was published Oct 6, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... Critical Unreviewed

CVE-2025-60965 was published Oct 6, 2025

IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11... High Unreviewed

CVE-2025-36354 was published Oct 6, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... Critical Unreviewed

CVE-2025-60957 was published Oct 6, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... High Unreviewed

CVE-2025-60960 was published Oct 6, 2025

OS Command Injection vulnerability in EndRun Technologies Sonoma D12 Network Time Server (GPS) F... High Unreviewed

CVE-2025-60962 was published Oct 6, 2025

A command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2025-47212 was published Oct 3, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59736 was published Oct 2, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59739 was published Oct 2, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59740 was published Oct 2, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59737 was published Oct 2, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59741 was published Oct 2, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59738 was published Oct 2, 2025

Operating system command injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability... Critical Unreviewed

CVE-2025-59735 was published Oct 2, 2025

A weakness has been identified in D-Link DIR-816L 206b01. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-9727 was published Oct 1, 2025

TOTOLINK X18 V9.1.0cu.2053_B20230309 was discovered to contain a command injection vulnerability... Critical Unreviewed

CVE-2025-61045 was published Oct 1, 2025

The Telenium Online Web Application is vulnerable due to a PHP endpoint accessible to... Critical Unreviewed

CVE-2025-10659 was published Sep 30, 2025

The Post By Email plugin for WordPress is vulnerable to arbitrary file uploads due to missing... Critical Unreviewed

CVE-2025-9762 was published Sep 30, 2025

IBM InfoSphere 11.7.0.0 through 11.7.1.6 Information Server could allow an authenticated user to... High Unreviewed

CVE-2025-36245 was published Sep 30, 2025

Previous 1…4…147 Next

Previous 1 2 3 4 5 6 … 146 147 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,668 advisories