GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,148

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,104 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Ilevia EVE X1/X5 Server version ≤ 4.7.18.0.eden contains a misconfiguration in the sudoers file... Critical Unreviewed

CVE-2025-34187 was published Sep 16, 2025

An issue in Datart v.1.0.0-rc.3 allows a remote attacker to execute arbitrary code via the INIT... Critical Unreviewed

CVE-2025-56819 was published Sep 24, 2025

A command injection vulnerability has been reported to affect QHora. If exploited, the... High Unreviewed

CVE-2024-50390 was published Mar 7, 2025

An OS command injection vulnerability has been reported to affect several product versions. If... High Unreviewed

CVE-2024-48861 was published Nov 22, 2024

An OS command injection vulnerability has been reported to affect several product versions. If... Critical Unreviewed

CVE-2024-48860 was published Nov 22, 2024

A command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-23356 was published Dec 19, 2024

A command injection vulnerability has been reported to affect QHora. If an attacker gains local... Low Unreviewed

CVE-2024-13087 was published Jun 6, 2025

OS Command injection vulnerability in Tenda AC9 1.0 was discovered to contain a command injection... Moderate Unreviewed

CVE-2025-57639 was published Sep 23, 2025

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub_47F028 function in jhttpd... Moderate Unreviewed

CVE-2025-57636 was published Sep 23, 2025

Multiple D-Link DIR-series routers, including DIR-110, DIR-412, DIR-600, DIR-610, DIR-615, DIR... Critical Unreviewed

CVE-2018-25115 was published Aug 28, 2025

A command injection vulnerability has been reported to affect QuRouter 2.5.1. If a remote... High Unreviewed

CVE-2025-29887 was published Aug 29, 2025

Ilevia EVE X1/X5 Server version ≤ 4.7.18.0.eden contains a vulnerability in its authentication... Critical Unreviewed

CVE-2025-34186 was published Sep 16, 2025

Ilevia EVE X1 Server version ≤ 4.7.18.0.eden contains an unauthenticated OS command injection... Critical Unreviewed

CVE-2025-34184 was published Sep 16, 2025

Spreecommerce versions prior to 0.50.x contain a remote command execution vulnerability in the... Critical Unreviewed

CVE-2011-10026 was published Aug 20, 2025

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the... High Unreviewed

CVE-2013-10061 was published Aug 1, 2025

The web interface of multiple D-Link routers, including DIR-600 rev B (≤2.14b01) and DIR-300 rev... Critical Unreviewed

CVE-2013-10069 was published Aug 5, 2025

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the... Critical Unreviewed

CVE-2013-10060 was published Aug 1, 2025

An OS command injection vulnerability exists in various legacy D-Link routers—including DIR-300... Critical Unreviewed

CVE-2013-10048 was published Aug 1, 2025

An authenticated OS command injection vulnerability exists in various D-Link routers (tested on... High Unreviewed

CVE-2013-10059 was published Aug 1, 2025

An OS command injection vulnerability exists in multiple D-Link routers—confirmed on DIR-300 rev... High Unreviewed

CVE-2013-10050 was published Aug 1, 2025

An OS command injection vulnerability exists in the Edimax EW-7438RPn Mini firmware version 1.13... Critical Unreviewed

CVE-2025-34029 was published Jun 20, 2025

A command injection vulnerability has been reported to affect several QNAP operating system... High Unreviewed

CVE-2024-50393 was published Dec 6, 2024

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Critical Unreviewed

CVE-2025-9588 was published Sep 23, 2025

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be... High Unreviewed

CVE-2025-9494 was published Sep 23, 2025

HyperX NGENUITY software is potentially vulnerable to arbitrary code execution. HP is releasing... Moderate Unreviewed

CVE-2025-10568 was published Sep 19, 2025

Previous 1…14…165 Next

Previous 1 2 … 12 13 14 15 16 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,104 advisories