GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,669 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the... High Unreviewed

CVE-2013-10061 was published Aug 1, 2025

An OS command injection vulnerability exists in multiple D-Link routers—confirmed on DIR-300 rev... High Unreviewed

CVE-2013-10050 was published Aug 1, 2025

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the... Critical Unreviewed

CVE-2013-10060 was published Aug 1, 2025

An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically... Critical Unreviewed

CVE-2013-10049 was published Aug 1, 2025

An OS command injection vulnerability exists in various legacy D-Link routers—including DIR-300... Critical Unreviewed

CVE-2013-10048 was published Aug 1, 2025

Alpine iLX-507 UPDM_wstpCBCUpdStart Command Injection Vulnerability. This vulnerability allows... Moderate Unreviewed

CVE-2025-8473 was published Aug 1, 2025

A command injection vulnerability exists in GestioIP 3.0 commit ac67be and earlier in... High Unreviewed

CVE-2013-10039 was published Jul 31, 2025

An unauthenticated remote command execution vulnerability exists in Pandora FMS versions up to... Critical Unreviewed

CVE-2014-125124 was published Jul 31, 2025

An OS command injection vulnerability exists in Russound MBX-PRE-D67F firmware version 3.1.6,... Critical Unreviewed

CVE-2025-50475 was published Jul 31, 2025

An OS command injection vulnerability exists in WebTester version 5.x via the install2.php... Critical Unreviewed

CVE-2013-10037 was published Jul 31, 2025

An authenticated remote code execution vulnerability in PowerStick Wave Dual-Band Wifi Extender... High Unreviewed

CVE-2025-29534 was published Jul 28, 2025

OS Command Injection in iSTAR Ultra products web application allows an authenticated attacker to... Critical Unreviewed

CVE-2025-53695 was published Jul 28, 2025

A vulnerability, which was classified as critical, was found in Vaelsys 4.1.0. This affects the... Moderate Unreviewed

CVE-2025-8259 was published Jul 28, 2025

A command injection vulnerability exists in the eScan Web Management Console version 5.5-2. The... Critical Unreviewed

CVE-2014-125118 was published Jul 25, 2025

Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Special Elements used... Critical Unreviewed

CVE-2025-5243 was published Jul 25, 2025

The WP Database Backup plugin for WordPress is vulnerable to OS Command Injection in versions... Critical Unreviewed

CVE-2019-25224 was published Jul 25, 2025

An unauthenticated OS command injection vulnerability exists within Xdebug versions 2.5.5 and... Critical Unreviewed

CVE-2015-10141 was published Jul 23, 2025

Remote Control Server, maintained by Steppschuh, 3.1.1.12 allows unauthenticated remote code... Critical Unreviewed

CVE-2022-4978 was published Jul 23, 2025

An authenticated remote attacker can execute arbitrary commands with root privileges on affected... High Unreviewed

CVE-2025-41684 was published Jul 23, 2025

An authenticated remote attacker can execute arbitrary commands with root privileges on affected... High Unreviewed

CVE-2025-41683 was published Jul 23, 2025

Improper neutralization of special elements used in an OS command ('OS Command Injection')... High Unreviewed

CVE-2024-53286 was published Jul 23, 2025

A potential command injection vulnerability has been identified in the Poly Clariti Manager for... Moderate Unreviewed

CVE-2025-43020 was published Jul 23, 2025

An unauthenticated OS command injection vulnerability exists in VIGI NVR1104H-4P V1 and VIGI... Critical Unreviewed

CVE-2025-7724 was published Jul 22, 2025

A command injection vulnerability exists that can be exploited after authentication in VIGI... High Unreviewed

CVE-2025-7723 was published Jul 22, 2025

An authentication bypass vulnerability exists in ETQ Reliance on the CG (legacy) platform. The... Critical Unreviewed

CVE-2025-34143 was published Jul 22, 2025

Previous 1…11…147 Next

Previous 1 2 … 9 10 11 12 13 … 146 147 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,669 advisories