Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,640
Maven
5,000+
npm
4,265
NuGet
760
pip
4,061
Pub
12
RubyGems
956
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

3,000 advisories

Loading
A vulnerability was found in Fujian Kelixun 1.0. It has been classified as critical. This affects... Moderate Unreviewed
CVE-2025-5106 was published May 23, 2025
Unsanitized input when setting a locale file leads to shell injection in mIPC camera firmware 5.3... High Unreviewed
CVE-2022-40785 was published Sep 27, 2022
D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this... Critical Unreviewed
CVE-2025-44084 was published May 20, 2025
A vulnerability has been found in D-Link DAR-7000 3.2 and classified as critical. This... Moderate Unreviewed
CVE-2025-1800 was published Mar 1, 2025
A vulnerability in the self-service portal of Cisco Duo could allow an unauthenticated, remote... Moderate Unreviewed
CVE-2025-20258 was published May 21, 2025
A vulnerability, which was classified as critical, has been found in D-Link DIR-823X 240126... Moderate Unreviewed
CVE-2025-2717 was published Mar 25, 2025
TOTOLINK A860R V4.1.2cu.5182_B20201027 was discovered to contain a command injection via the... Critical Unreviewed
CVE-2022-40475 was published Sep 30, 2022
The ChatGPT system through 2025-03-30 performs inline rendering of SVG documents (instead of, for... Moderate Unreviewed
CVE-2025-43714 was published May 19, 2025
Multiple Code Injection vulnerabilities in EasyVirt DC NetScope <= 8.7.0 allows remote... High Unreviewed
CVE-2024-55063 was published May 19, 2025
Custom Twitter Feeds WordPress plugin before 2.2.3 is not filtering some of its settings... Moderate Unreviewed
CVE-2024-8983 was published Oct 8, 2024
Apache Kylin vulnerable to remote code execution Critical
CVE-2022-24697 was published for org.apache.kylin:kylin-core-common (Maven) Jul 6, 2023
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via... High Unreviewed
CVE-2022-42160 was published Oct 14, 2022
KiTTY versions 0.76.1.13 and before is vulnerable to command injection via the filename variable,... High Unreviewed
CVE-2024-23749 was published Feb 9, 2024
An issue was discovered in GTB Central Console 15.17.1-30814.NG. The method... High Unreviewed
CVE-2024-22107 was published Feb 2, 2024
Netgear R6220 v1.1.0.114_1.0.1 suffers from Incorrect Access Control, resulting in a command... High Unreviewed
CVE-2022-42221 was published Oct 17, 2022
D-Link COVR 1200,1202,1203 v1.08 was discovered to contain a command injection vulnerability via... High Unreviewed
CVE-2022-42161 was published Oct 14, 2022
D-Link COVR 1200,1203 v1.08 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2022-42156 was published Oct 14, 2022
iKuai8 v3.6.7 was discovered to contain an authenticated remote code execution (RCE) vulnerability. High Unreviewed
CVE-2022-40469 was published Oct 12, 2022
A vulnerability in GitLab CE/EE affecting all versions from 11.10 prior to 15.1.6, 15.2 to 15.2.4... High Unreviewed
CVE-2022-2992 was published Oct 17, 2022
A vulnerability classified as critical has been found in D-Link DIR-605L 2.13B01. Affected is the... Moderate Unreviewed
CVE-2025-4445 was published May 9, 2025
A vulnerability was found in D-Link DIR-605L 2.13B01. It has been rated as critical. This issue... Moderate Unreviewed
CVE-2025-4443 was published May 9, 2025
A vulnerability was found in Tenda RX3 16.03.13.11_multi. It has been rated as critical. This... Moderate Unreviewed
CVE-2025-4357 was published May 6, 2025
A vulnerability was found in Netgear JWNR2000v2 1.0.0.11. It has been declared as critical.... Moderate Unreviewed
CVE-2025-4121 was published Apr 30, 2025
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Critical Unreviewed
CVE-2025-45491 was published May 6, 2025
A vulnerability classified as critical was found in D-Link DIR-880L up to 104WWb01. Affected by... Moderate Unreviewed
CVE-2025-4341 was published May 6, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database