Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

542 advisories

Loading
A vulnerability has been found in didi Super-Jacoco 1.0 and classified as critical. Affected by... Moderate Unreviewed
CVE-2024-10919 was published Nov 6, 2024
A local user with administrative access rights can enter specialy crafted values for settings at... Moderate Unreviewed
CVE-2024-8934 was published Oct 31, 2024
There is a command injection vulnerability in ZTE MF258 Pro product. Due to insufficient... Moderate Unreviewed
CVE-2024-22065 was published Oct 29, 2024
A vulnerability in the cluster backup feature of Cisco Secure Firewall Management Center (FMC)... Moderate Unreviewed
CVE-2024-20275 was published Oct 23, 2024
A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This... Moderate Unreviewed
CVE-2005-10003 was published Oct 17, 2024
A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could... Moderate Unreviewed
CVE-2024-20461 was published Oct 16, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series... Moderate Unreviewed
CVE-2024-20459 was published Oct 16, 2024
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The... Moderate Unreviewed
CVE-2024-22033 was published Oct 16, 2024
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1... Moderate Unreviewed
CVE-2024-9977 was published Oct 15, 2024
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected... Moderate Unreviewed
CVE-2024-9916 was published Oct 13, 2024
A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This... Moderate Unreviewed
CVE-2024-9793 was published Oct 10, 2024
ggit is vulnerable to Command Injection via the fetchTags(branch) API Moderate
CVE-2024-21532 was published for ggit (npm) Oct 8, 2024
DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability... Moderate Unreviewed
CVE-2024-41585 was published Oct 3, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-23961 was published Sep 28, 2024
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability.... Moderate Unreviewed
CVE-2024-23924 was published Sep 28, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2024-9076 was published Sep 22, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected... Moderate Unreviewed
CVE-2024-9004 was published Sep 19, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-9001 was published Sep 19, 2024
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN... Moderate Unreviewed
CVE-2024-44072 was published Sep 10, 2024
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified as... Moderate Unreviewed
CVE-2024-8574 was published Sep 8, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2024-21906 was published Sep 6, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-34979 was published Sep 6, 2024
A vulnerability in specific CLI commands in Cisco Identity Services Engine (ISE) could allow an... Moderate Unreviewed
CVE-2024-20469 was published Sep 4, 2024
Nuclei Template Signature Verification Bypass Moderate
CVE-2024-43405 was published for github.com/projectdiscovery/nuclei/v3 (Go) Sep 4, 2024
GuyGoldenberg
Credited to GuyGoldenberg
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged,... Moderate Unreviewed
CVE-2024-20289 was published Aug 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database