GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,816

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,669 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An OS command injection vulnerability exists in white-labeled DVRs manufactured by TVT, affecting... Critical Unreviewed

CVE-2025-34036 was published Jun 26, 2025

An OS command injection vulnerability exists in the Blue Angel Software Suite running on embedded... High Unreviewed

CVE-2025-34033 was published Jun 26, 2025

Certain hybrid DVR models (HBF-09KD and HBF-16NK) from Hunt Electronic have an OS Command... High Unreviewed

CVE-2025-6562 was published Jun 26, 2025

A vulnerability was found in TOTOLINK CA300-PoE 6.2c.884. It has been rated as critical. Affected... Moderate Unreviewed

CVE-2025-6620 was published Jun 26, 2025

A vulnerability classified as critical has been found in TOTOLINK CA300-PoE 6.2c.884. This... Moderate Unreviewed

CVE-2025-6621 was published Jun 26, 2025

A user with specific node group editing permissions and a specially crafted class parameter could... High Unreviewed

CVE-2025-5459 was published Jun 26, 2025

WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS... Critical Unreviewed

CVE-2025-48890 was published Jun 24, 2025

WRC-X3000GS, WRC-X3000GSA, and WRC-X3000GSN contain an improper neutralization of special... High Unreviewed

CVE-2025-41427 was published Jun 24, 2025

WRH-733GBK and WRH-733GWH contain an improper neutralization of special elements used in an OS... Critical Unreviewed

CVE-2025-43879 was published Jun 24, 2025

Meridian Technique Materialise OrthoView through 7.5.1 allows OS Command Injection when servlet... High Unreviewed

CVE-2025-23049 was published Jun 23, 2025

Aviatrix Controller versions prior to 7.1.4208, 7.2.5090, and 8.0.0 fail to sanitize user input... High Unreviewed

CVE-2025-2172 was published Jun 23, 2025

An OS command injection vulnerability exists in the Edimax EW-7438RPn Mini firmware version 1.13... Critical Unreviewed

CVE-2025-34029 was published Jun 20, 2025

A command injection vulnerability was discovered in the TrustyAI Explainability toolkit.... Moderate Unreviewed

CVE-2025-6193 was published Jun 20, 2025

Some Hikvision Wireless Access Point are vulnerable to authenticated remote command execution due... High Unreviewed

CVE-2025-39240 was published Jun 13, 2025

A command injection vulnerability in Palo Alto Networks PAN-OS® software enables an authenticated... High Unreviewed

CVE-2025-4230 was published Jun 13, 2025

An unauthenticated remote attacker in a man-in-the-middle position can inject arbitrary commands... High Unreviewed

CVE-2025-41663 was published Jun 11, 2025

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2025-31104 was published Jun 10, 2025

An OS command injection vulnerability within the update functionality may allow an authenticated... High Unreviewed

CVE-2024-13089 was published Jun 10, 2025

CWE-78: I Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed

CVE-2025-5743 was published Jun 10, 2025

A command injection vulnerability has been reported to affect QHora. If an attacker gains local... Low Unreviewed

CVE-2024-13087 was published Jun 6, 2025

File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()`... High Unreviewed

CVE-2011-10007 was published Jun 5, 2025

A vulnerability, which was classified as critical, was found in D-Link DIR-816 1.10CNB05.... Moderate Unreviewed

CVE-2025-5620 was published Jun 5, 2025

A vulnerability has been found in D-Link DIR-816 1.10CNB05 and classified as critical. Affected... Moderate Unreviewed

CVE-2025-5621 was published Jun 5, 2025

A vulnerability was found in D-Link DCS-932L 2.18.01. It has been rated as critical. Affected by... Moderate Unreviewed

CVE-2025-5573 was published Jun 4, 2025

A vulnerability was found in Jrohy trojan up to 2.15.3. It has been declared as critical. This... Moderate Unreviewed

CVE-2025-5525 was published Jun 3, 2025

Previous 1…14…147 Next

Previous 1 2 … 12 13 14 15 16 … 146 147 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,669 advisories