Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

2,989 advisories

Loading
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable... Moderate Unreviewed
CVE-2025-25604 was published Feb 21, 2025
An arbitrary file upload vulnerability in the component /file/savefile.do of MRCMS v3.1.2 allows... Moderate Unreviewed
CVE-2025-25766 was published Feb 21, 2025
A vulnerability has been found in BDCOM Behavior Management and Auditing System up to 20250210... Moderate Unreviewed
CVE-2025-1546 was published Feb 21, 2025
A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has... Moderate Unreviewed
CVE-2025-1536 was published Feb 21, 2025
Tenda AC10 V1.0 V15.03.06.23 has a command injection vulnerablility located in the formexeCommand... Critical Unreviewed
CVE-2025-25675 was published Feb 21, 2025
DocsGPT Allows Remote Code Execution Critical
CVE-2025-0868 was published for docsgpt (npm) Feb 20, 2025
A vulnerability classified as critical was found in MicroWord eScan Antivirus 7.0.32 on Linux.... Low Unreviewed
CVE-2025-1369 was published Feb 17, 2025
A vulnerability, which was classified as critical, has been found in MicroWorld eScan Antivirus 7... Moderate Unreviewed
CVE-2025-1370 was published Feb 17, 2025
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been rated as critical.... Moderate Unreviewed
CVE-2025-1339 was published Feb 16, 2025
Implementation of the Simple Network Management Protocol (SNMP) operating on the Brocade 6547 ... High Unreviewed
CVE-2024-5461 was published Feb 15, 2025
The vulnerability may allow a remote low priviledged attacker to run arbitrary shell commands by... High Unreviewed
CVE-2025-0593 was published Feb 14, 2025
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed
CVE-2025-22630 was published Feb 14, 2025
A critical remote code execution (RCE) vulnerability exists in the web-based management interface... High Unreviewed
CVE-2025-22962 was published Feb 14, 2025
An attacker may inject commands via specially-crafted post requests. High Unreviewed
CVE-2025-24861 was published Feb 14, 2025
A vulnerability classified as critical was found in olajowon Loggrove up to... Moderate Unreviewed
CVE-2025-1229 was published Feb 13, 2025
D-Link DIR-853 A1 FW1.20B07 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2025-25743 was published Feb 12, 2025
In Progress® Telerik® UI for WinUI versions prior to 2025 Q1 (3.0.0), a command injection attack... High Unreviewed
CVE-2024-12251 was published Feb 12, 2025
An issue in Team Amaze Amaze File Manager v.3.8.5 and fixed in v.3.10 allows a local attacker to... Moderate Unreviewed
CVE-2024-33469 was published Feb 12, 2025
The Platform component of Mitel OpenScape 4000 and OpenScape 4000 Manager V11 R0.22.0 through V11... High Unreviewed
CVE-2025-23094 was published Feb 6, 2025
Honeywell OneWireless Wireless Device Manager (WDM) for the following versions R310.x, R320.x,... Critical Unreviewed
CVE-2023-5878 was published Feb 6, 2025
When running in Appliance mode, an authenticated remote command injection vulnerability exists in... High Unreviewed
CVE-2025-23239 was published Feb 5, 2025
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure... Moderate Unreviewed
CVE-2025-20184 was published Feb 5, 2025
eladmin <=2.7 is vulnerable to CSV Injection in the exception log download module. Critical Unreviewed
CVE-2025-22978 was published Feb 3, 2025
EasyVirt DCScope 8.6.0 and earlier and co2Scope 1.3.0 and earlier are vulnerable to Command... Critical Unreviewed
CVE-2024-55062 was published Feb 1, 2025
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected... High Unreviewed
CVE-2024-23971 was published Jan 31, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database