GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,946

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,992 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security vulnerability has been detected in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by... Moderate Unreviewed

CVE-2025-10328 was published Sep 13, 2025

A security vulnerability has been detected in Wavlink WL-WN578W2 221110. This affects the... Moderate Unreviewed

CVE-2025-10358 was published Sep 13, 2025

A vulnerability was detected in Wavlink WL-WN578W2 221110. This impacts the function sub_404DBC... Moderate Unreviewed

CVE-2025-10359 was published Sep 13, 2025

A vulnerability has been found in D-Link DI-8100, DI-8100G, DI-8200, DI-8200G, DI-8003 and DI... Moderate Unreviewed

CVE-2025-10440 was published Sep 15, 2025

A vulnerability was found in D-Link DI-8100G, DI-8200G and DI-8003G 17.12.20A1/19.12.10A1.... Moderate Unreviewed

CVE-2025-10441 was published Sep 15, 2025

A vulnerability was determined in Tenda AC9 and AC15 15.03.05.14. This affects the function... Moderate Unreviewed

CVE-2025-10442 was published Sep 15, 2025

mcp-kubernetes-server has a Command Injection vulnerability Moderate

CVE-2025-59376 was published for mcp-kubernetes-server (pip) Sep 15, 2025

Credited to cai0duque

TOTOLINK X6000R V9.4.0cu.1360_B20241207 was found to contain a command injection vulnerability in... Critical Unreviewed

CVE-2025-52053 was published Sep 15, 2025

Edimax BR-6473AX v1.0.28 was discovered to contain a remote code execution (RCE) vulnerability... High Unreviewed

CVE-2025-56706 was published Sep 16, 2025

In JetBrains Junie before 252.284.66, 251.284.66, 243.284.66, 252.284.61, 251.284.61, 243.284.61,... High Unreviewed

CVE-2025-59458 was published Sep 17, 2025

@sequa-ai/sequa-mcp has Command Injection vulnerability Moderate

CVE-2025-10619 was published for @sequa-ai/sequa-mcp (npm) Sep 17, 2025

Credited to cai0duque

A vulnerability was determined in D-Link DIR-852 1.00CN B09. This issue affects the function... Moderate Unreviewed

CVE-2025-10629 was published Sep 18, 2025

A vulnerability was found in D-Link DIR-852 1.00CN B09. This vulnerability affects unknown code... Moderate Unreviewed

CVE-2025-10628 was published Sep 18, 2025

The cbis_manager Podman container is vulnerable to remote command execution via the /api/plugins... High Unreviewed

CVE-2023-49565 was published Sep 18, 2025

An issue Clip Bucket v.5.5.2 Build#90 allows a remote attacker to execute arbitrary codes via the... Moderate Unreviewed

CVE-2025-55911 was published Sep 18, 2025

A command injection vulnerability in COMFAST CF-XR11 (firmware V2.7.2) exists in the multi_pppoe... High Unreviewed

CVE-2025-57293 was published Sep 18, 2025

A vulnerability was identified in D-Link DIR-645 105B01. This issue affects the function... Moderate Unreviewed

CVE-2025-10689 was published Sep 18, 2025

A deserialization vulnerability in the License Servlet of Fortra's GoAnywhere MFT allows an actor... Critical Unreviewed

CVE-2025-10035 was published Sep 19, 2025

Libraesva ESG 4.5 through 5.5.x before 5.5.7 allows command injection via a compressed e-mail... Moderate Unreviewed

CVE-2025-59689 was published Sep 19, 2025

`git-comiters` Command Injection vulnerability High

CVE-2025-59831 was published for git-commiters (npm) Sep 22, 2025

Credited to lirantal

A vulnerability was detected in CosmodiumCS OnlyRAT up to 3.2. The affected element is the... Low Unreviewed

CVE-2025-10767 was published Sep 22, 2025

A security vulnerability has been detected in Wavlink WL-NU516U1 240425. This vulnerability... Moderate Unreviewed

CVE-2025-10775 was published Sep 22, 2025

In 2wcom IP-4c 2.16, the web interface allows admin and manager users to execute arbitrary code... High Unreviewed

CVE-2025-43953 was published Sep 22, 2025

Tenda AC6 router firmware 15.03.05.19 contains a command injection vulnerability in the... Moderate Unreviewed

CVE-2025-57296 was published Sep 22, 2025

A weakness has been identified in Ruijie 6000-E10 up to 2.4.3.6-20171117. This affects an unknown... Moderate Unreviewed

CVE-2025-10774 was published Sep 22, 2025

Previous 1…117…120 Next

Previous 1 2 … 115 116 117 118 119 120 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,992 advisories