Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

617 advisories

Loading
TOTOLINK CPE CP900 V6.3c.1144_B20190715 was discovered to contain a command injection... Moderate Unreviewed
CVE-2025-44838 was published May 1, 2025
TOTOLINK CPE CP900 V6.3c.1144_B20190715 was discovered to contain a command injection... Moderate Unreviewed
CVE-2025-44836 was published May 1, 2025
Totolink CP900 V6.3c.1144_B20190715 was found to contain a command injection vulnerability in the... Moderate Unreviewed
CVE-2025-44854 was published May 1, 2025
D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in iptablesWebsFilterRun,... Moderate Unreviewed
CVE-2025-44835 was published May 1, 2025
A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been rated as critical. Affected... Moderate Unreviewed
CVE-2025-4122 was published Apr 30, 2025
A HTML Injection vulnerability was discovered in the foreigner-search.php file of PHPGurukul Park... Moderate Unreviewed
CVE-2025-45011 was published Apr 30, 2025
A HTML Injection vulnerability was discovered in the normal-search.php file of PHPGurukul Park... Moderate Unreviewed
CVE-2025-45009 was published Apr 30, 2025
A HTML Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of... Moderate Unreviewed
CVE-2025-45010 was published Apr 30, 2025
A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been declared as critical.... Moderate Unreviewed
CVE-2025-4121 was published Apr 30, 2025
Due to insufficient escaping of special characters in the "copy as cURL" feature, an attacker... Moderate Unreviewed
CVE-2025-4089 was published Apr 29, 2025
A vulnerability was found in TOTOLINK N150RT 3.4.0-B20190525. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-3987 was published Apr 28, 2025
A vulnerability has been found in AMTT Hotel Broadband Operation System 1.0 and classified as... Moderate Unreviewed
CVE-2025-3983 was published Apr 27, 2025
TOTOLINK A800R V4.1.2cu.5032_B20200408 is vulnerable to Command Injection in downloadFile.cgi via... Moderate Unreviewed
CVE-2025-28017 was published Apr 23, 2025
D-Link DIR-816 A2V1.1.0B05 was found to contain a command injection in /goform/delRouting. Moderate Unreviewed
CVE-2025-29743 was published Apr 22, 2025
A vulnerability classified as critical was found in westboy CicadasCMS 2.0. This vulnerability... Moderate Unreviewed
CVE-2025-3816 was published Apr 19, 2025
74cms <=3.33 is vulnerable to remote code execution (RCE) in the background interface apiadmin. Moderate Unreviewed
CVE-2024-46089 was published Apr 18, 2025
A vulnerability, which was classified as critical, has been found in SourceCodester Web-based... Moderate Unreviewed
CVE-2025-3729 was published Apr 16, 2025
Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload... Moderate Unreviewed
CVE-2024-40070 was published Apr 16, 2025
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a... Moderate Unreviewed
CVE-2025-28142 was published Apr 15, 2025
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3_1.0.15 was discovered to contain a... Moderate Unreviewed
CVE-2025-28143 was published Apr 15, 2025
Edimax AC1200 Wave 2 Dual-Band Gigabit Router BR-6478AC V3 1.0.15 was discovered to contain a... Moderate Unreviewed
CVE-2025-28145 was published Apr 15, 2025
A command injection vulnerability exists in the Infinxt iEdge 100 2.1.32 in the Troubleshoot... Moderate Unreviewed
CVE-2025-26056 was published Apr 1, 2025
A vulnerability, which was classified as critical, has been found in Digital China DCME-520 up to... Moderate Unreviewed
CVE-2025-3002 was published Mar 31, 2025
A vulnerability has been found in Legrand SMS PowerView 1.x and classified as critical. Affected... Moderate Unreviewed
CVE-2025-2983 was published Mar 31, 2025
A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13.... Moderate Unreviewed
CVE-2025-2733 was published Mar 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database