GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,600
Composer 5,005
Erlang 39
GitHub Actions 38
Go 2,635
Maven 6,103
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,378

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,100 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Three os command injection vulnerabilities exist in the boa formWsc functionality of Realtek... High Unreviewed

CVE-2023-50383 was published Jul 8, 2024

Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0... Critical Unreviewed

CVE-2022-42493 was published Jan 27, 2023

Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0... Critical Unreviewed

CVE-2022-42490 was published Jan 27, 2023

Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0... Critical Unreviewed

CVE-2022-42491 was published Jan 27, 2023

Several OS command injection vulnerabilities exist in the m2m binary of Siretta QUARTZ-GOLD G5.0... Critical Unreviewed

CVE-2022-42492 was published Jan 27, 2023

Two OS command injection vulnerability exist in the vtysh_ubus toolsh_excute.constprop.1... High Unreviewed

CVE-2023-24519 was published Jul 6, 2023

An OS command injection vulnerability exists in the data.cgi xfer_dns functionality of peplink... High Unreviewed

CVE-2023-34356 was published Oct 11, 2023

An OS command injection vulnerability exists in the api.cgi cmd.mvpn.x509.write functionality of... High Unreviewed

CVE-2023-35193 was published Oct 11, 2023

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave... High Unreviewed

CVE-2023-35959 was published Jan 8, 2024

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave... High Unreviewed

CVE-2023-35961 was published Jan 8, 2024

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave... High Unreviewed

CVE-2023-35960 was published Jan 8, 2024

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave... High Unreviewed

CVE-2023-35962 was published Jan 8, 2024

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave... High Unreviewed

CVE-2023-35964 was published Jan 8, 2024

A post authentication command injection vulnerability exists when configuring the wireguard VPN... High Unreviewed

CVE-2023-46683 was published Feb 6, 2024

A post authentication command injection vulnerability exists in the GRE policy functionality of... High Unreviewed

CVE-2023-47167 was published Feb 6, 2024

A post-authentication command injection vulnerability exists in the PPTP client functionality of... High Unreviewed

CVE-2023-36498 was published Feb 6, 2024

A post authentication command injection vulnerability exists when setting up the PPTP global... High Unreviewed

CVE-2023-42664 was published Feb 6, 2024

A command execution vulnerability exists in the guest resource functionality of Tp-Link ER7206... High Unreviewed

CVE-2023-43482 was published Feb 6, 2024

A post authentication command execution vulnerability exists in the web filtering functionality... High Unreviewed

CVE-2023-47618 was published Feb 6, 2024

A post authentication command injection vulnerability exists when configuring the web group... High Unreviewed

CVE-2023-47617 was published Feb 6, 2024

An issue in Infotel Conseil GLPI v.10.X.X and after allows a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2024-31705 was published Apr 29, 2024

The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2)... Critical Unreviewed

CVE-2020-8007 was published Nov 8, 2024

CWP (aka Control Web Panel or CentOS Web Panel) before 0.9.8.1205 allows unauthenticated remote... Critical Unreviewed

CVE-2025-48703 was published Sep 22, 2025

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a... High Unreviewed

CVE-2023-28528 was published Apr 28, 2023

Two OS command injection vulnerabilities exist in the urvpn_client cmd_name_action functionality... High Unreviewed

CVE-2023-24582 was published Jul 6, 2023

Previous 1…162…164 Next

Previous 1 2 … 160 161 162 163 164 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,100 advisories