GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,156

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,267 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-36553 was published Nov 14, 2023

An OS command injection vulnerability has been reported to affect several QNAP operating system... Critical Unreviewed

CVE-2023-23369 was published Nov 3, 2023

An OS command injection vulnerability has been reported to affect several QNAP operating system... Critical Unreviewed

CVE-2023-23368 was published Nov 3, 2023

An issue in franfinance before v.2.0.27 allows a remote attacker to execute arbitrary code via... Critical Unreviewed

CVE-2023-43139 was published Oct 31, 2023

tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a... Critical Unreviewed

CVE-2023-47104 was published Oct 30, 2023

An issue in ZIONCOM (Hong Kong) Technology Limited A7000R v.4.1cu.4154 allows an attacker to... Critical Unreviewed

CVE-2023-46510 was published Oct 27, 2023

An issue was discovered on certain ABUS TVIP cameras. The CGI scripts allow remote attackers to... Critical Unreviewed

CVE-2018-17879 was published Oct 27, 2023

Hardcoded manufacturer credentials and an OS command injection vulnerability in the /cgi-bin/mft/... Critical Unreviewed

CVE-2018-17558 was published Oct 27, 2023

NextGen Healthcare Mirth Connect before version 4.4.1 is vulnerable to unauthenticated remote... Critical Unreviewed

CVE-2023-43208 was published Oct 26, 2023

An Improper Input Validation vulnerability in Zscaler Client Connector on Linux allows Privilege... Critical Unreviewed

CVE-2023-28805 was published Oct 23, 2023

An OS command injection vulnerability exists in the httpd iperfrun.cgi functionality of... Critical Unreviewed

CVE-2023-3991 was published Oct 16, 2023

An OS command injection vulnerability exists in web2py 2.24.1 and earlier. When the product is... Critical Unreviewed

CVE-2023-45158 was published Oct 16, 2023

Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2023-45467 was published Oct 13, 2023

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-36550 was published Oct 10, 2023

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-34992 was published Oct 10, 2023

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-36549 was published Oct 10, 2023

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-36548 was published Oct 10, 2023

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-36547 was published Oct 10, 2023

A improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed

CVE-2023-34993 was published Oct 10, 2023

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system... Critical Unreviewed

CVE-2023-30805 was published Oct 10, 2023

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system... Critical Unreviewed

CVE-2023-30806 was published Oct 10, 2023

An issue was discovered in DTS Monitoring 3.57.0. The parameter options within the WGET check... Critical Unreviewed

CVE-2023-33269 was published Oct 3, 2023

An issue was discovered in DTS Monitoring 3.57.0. The parameter url within the Curl check... Critical Unreviewed

CVE-2023-33270 was published Oct 3, 2023

An issue was discovered in DTS Monitoring 3.57.0. The parameter ip within the Ping check function... Critical Unreviewed

CVE-2023-33272 was published Oct 3, 2023

An issue was discovered in DTS Monitoring 3.57.0. The parameter common_name within the SSL... Critical Unreviewed

CVE-2023-33271 was published Oct 3, 2023

Previous 1…18…51 Next

Previous 1 2 … 16 17 18 19 20 … 50 51 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,267 advisories