GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,787

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,102 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a... Moderate Unreviewed

CVE-2025-0356 was published Jan 15, 2025

An improper neutralization of special elements used in an os command ('os command injection') in... Moderate Unreviewed

CVE-2024-56497 was published Jan 14, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection')... Moderate Unreviewed

CVE-2024-48890 was published Jan 14, 2025

A improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2024-50566 was published Jan 14, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection')... Moderate Unreviewed

CVE-2024-40587 was published Jan 14, 2025

A improper neutralization of special elements used in an os command ('os command injection') in... Moderate Unreviewed

CVE-2024-26012 was published Jan 14, 2025

An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in... High Unreviewed

CVE-2024-27778 was published Jan 14, 2025

An improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2023-37937 was published Jan 14, 2025

OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440... High Unreviewed

CVE-2025-20016 was published Jan 14, 2025

OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340... Critical Unreviewed

CVE-2025-20055 was published Jan 14, 2025

An OS command injection vulnerability in Palo Alto Networks Expedition enables an authenticated... Moderate Unreviewed

CVE-2025-0107 was published Jan 11, 2025

NETGEAR DGN1000 before 1.1.00.48 is vulnerable to an authentication bypass vulnerability. A... Critical Unreviewed

CVE-2024-12847 was published Jan 10, 2025

An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in... Critical Unreviewed

CVE-2024-57687 was published Jan 10, 2025

Command injection in the <redacted> parameter of a <redacted>.exe request leads to remote code... Critical Unreviewed

CVE-2024-43648 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43651 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43653 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43657 was published Jan 9, 2025

Authenticated command injection in the filename of a <redacted>.exe request leads to remote code... Critical Unreviewed

CVE-2024-43649 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43652 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43650 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43654 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43656 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43655 was published Jan 9, 2025

An issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996. Due to... Critical Unreviewed

CVE-2024-50603 was published Jan 8, 2025

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Low Unreviewed

CVE-2024-12970 was published Jan 6, 2025

Previous 1…25…165 Next

Previous 1 2 … 23 24 25 26 27 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,102 advisories