Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,263
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,618 advisories

Loading
An issue was discovered in GitLab EE affecting all versions starting from 14.9 before 17.8.6, all... Low Unreviewed
CVE-2024-9773 was published Mar 27, 2025
A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows... Critical Unreviewed
CVE-2024-55030 was published Mar 25, 2025
A command injection vulnerability in D-Link DIR-823X 240126 and 240802 allows an authorized... High Unreviewed
CVE-2025-29635 was published Mar 25, 2025
A vulnerability classified as critical has been found in mannaandpoem OpenManus up to 2025.3.13.... Moderate Unreviewed
CVE-2025-2733 was published Mar 25, 2025
A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126... Moderate Unreviewed
CVE-2025-2717 was published Mar 25, 2025
A vulnerability classified as critical was found in AMTT Hotel Broadband Operation System 1.0.... Moderate Unreviewed
CVE-2025-2701 was published Mar 24, 2025
In Linksys E5600 V1.1.0.26, the \usr\share\lua\runtime.lua file contains a command injection... High Unreviewed
CVE-2025-29227 was published Mar 21, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the pt... High Unreviewed
CVE-2025-29223 was published Mar 21, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2025-29230 was published Mar 21, 2025
In Linksys E5600 V1.1.0.26, the \usr\share\lua\runtime.lua file contains a command injection... High Unreviewed
CVE-2025-29226 was published Mar 21, 2025
AutoGPT versions 0.3.4 and earlier are vulnerable to a Server-Side Template Injection (SSTI) that... High Unreviewed
CVE-2025-1040 was published Mar 20, 2025
A command injection vulnerability exists in the workflow-checker.yml workflow of significant... High Unreviewed
CVE-2024-8156 was published Mar 20, 2025
In infiniflow/ragflow versions 0.12.0, the `web_crawl` function in `document_app.py` contains... Moderate Unreviewed
CVE-2024-12450 was published Mar 20, 2025
In the `manim` plugin of binary-husky/gpt_academic, versions prior to the fix, a vulnerability... High Unreviewed
CVE-2024-10954 was published Mar 20, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... High Unreviewed
CVE-2025-22473 was published Mar 17, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... High Unreviewed
CVE-2025-22472 was published Mar 17, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... High Unreviewed
CVE-2024-48830 was published Mar 17, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... Moderate Unreviewed
CVE-2024-48015 was published Mar 17, 2025
Dell SmartFabric OS10 Software, version(s) 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contain(s) an... Moderate Unreviewed
CVE-2024-48017 was published Mar 17, 2025
Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command... High Unreviewed
CVE-2024-12971 was published Mar 17, 2025
Improper Neutralization of Special Elements used in a Command vulnerability allows OS Command... High Unreviewed
CVE-2024-12992 was published Mar 17, 2025
A vulnerability has been found in Oiwtech OIW-2431APGN-HP 2.5.3-B20131128 and classified as... Moderate Unreviewed
CVE-2025-2367 was published Mar 17, 2025
A improper neutralization of special elements used in a command ('command injection') in Fortinet... Moderate Unreviewed
CVE-2023-33300 was published Mar 14, 2025
A improper neutralization of special elements used in a command ('command injection') in Fortinet... High Unreviewed
CVE-2024-46662 was published Mar 14, 2025
An issue was discovered in GitLab EE affecting all versions starting from 17.2 before 17.7.7, all... Low Unreviewed
CVE-2024-8402 was published Mar 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database