Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,104 advisories

Loading
jupyterlab-git has a command injection vulnerability in "Open Git Repository in Terminal" High
CVE-2025-30370 was published for jupyterlab-git (pip) Apr 4, 2025
dlqqq rpwagner
krassowski
Credited to dlqqq, rpwagner, and krassowski
Netwrix Password Secure 9.2.0.32454 allows OS command injection. Critical Unreviewed
CVE-2025-26817 was published Apr 3, 2025
A remote attacker with web administrator privileges can exploit the device’s web interface to... Critical Unreviewed
CVE-2025-0415 was published Apr 2, 2025
This vulnerability involves command injection in tcpdump within Moxa products, enabling an... High Unreviewed
CVE-2025-0676 was published Apr 2, 2025
An OS Command Injection vulnerability exists in the Infinxt iEdge 100 2.1.32 Troubleshoot module,... Moderate Unreviewed
CVE-2025-26055 was published Apr 1, 2025
Drupal AI Vulnerable to OS Command Injection via Optional Automator Types Moderate
CVE-2025-31692 was published for drupal/ai (Composer) Apr 1, 2025
Drupal AI Vulnerable to OS Command Injection Moderate
CVE-2025-31693 was published for drupal/ai (Composer) Apr 1, 2025
Xorcom CompletePBX is vulnerable to command injection in the administrator Task Scheduler... Critical Unreviewed
CVE-2025-30004 was published Mar 31, 2025
Os command injection vulnerability in e-solutions e-management. This vulnerability allows an... Critical Unreviewed
CVE-2025-3022 was published Mar 31, 2025
A critical OS Command Injection vulnerability has been identified in the FAST LTA Silent Brick... Critical Unreviewed
CVE-2025-2071 was published Mar 31, 2025
TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Command Injection in /bin/boa via bandstr. Critical Unreviewed
CVE-2025-25579 was published Mar 29, 2025
An issue in TOTOLINK A3100R V4.1.2cu.5247_B20211129 allows a remote attacker to execute arbitrary... Critical Unreviewed
CVE-2025-28256 was published Mar 28, 2025
Netgear DC112A V1.0.0.64 has an OS command injection vulnerability in the usb_adv.cgi, which... Critical Unreviewed
CVE-2025-28219 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-24380 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-24386 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-24379 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-24385 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2024-49601 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2024-49564 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-24378 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... Critical Unreviewed
CVE-2025-24383 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2024-49563 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-23383 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-24382 was published Mar 28, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... Critical Unreviewed
CVE-2025-22398 was published Mar 28, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database