GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,841

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,102 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Dell RecoverPoint for Virtual Machines 6.0.x contains a OS Command Injection vulnerability. An... Moderate Unreviewed

CVE-2024-48008 was published Dec 13, 2024

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-52058 was published Dec 13, 2024

An authenticated Remote Code Execution (RCE) vulnerability exists in the AirWave CLI. Successful... High Unreviewed

CVE-2024-54008 was published Dec 10, 2024

An unauthenticated attacker with network access to the affected device's web interface can... High Unreviewed

CVE-2024-28138 was published Dec 10, 2024

A vulnerability was found in WeiYe-Jing datax-web 2.1.1. It has been classified as critical. This... Moderate Unreviewed

CVE-2024-12358 was published Dec 9, 2024

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on... High Unreviewed

CVE-2024-47115 was published Dec 7, 2024

The affected product is vulnerable to a command injection. An unauthenticated attacker could send... Critical Unreviewed

CVE-2024-52320 was published Dec 6, 2024

A command injection vulnerability has been reported to affect License Center. If exploited, the... High Unreviewed

CVE-2024-48863 was published Dec 6, 2024

A command injection vulnerability has been reported to affect several QNAP operating system... High Unreviewed

CVE-2024-50393 was published Dec 6, 2024

UD-LT1 firmware Ver.2.1.8 and earlier and UD-LT1/EX firmware Ver.2.1.8 and earlier allow a remote... High Unreviewed

CVE-2024-47133 was published Dec 5, 2024

IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could... High Unreviewed

CVE-2024-51465 was published Dec 4, 2024

A post-authentication command injection vulnerability in the "host" parameter of the diagnostic... High Unreviewed

CVE-2024-9200 was published Dec 3, 2024

Authenticated remote code execution (RCE) vulnerabilities affect TP-Link Archer, Deco, and Tapo... High Unreviewed

CVE-2024-53375 was published Dec 3, 2024

An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed

CVE-2024-53940 was published Dec 3, 2024

An issue was discovered in Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware... High Unreviewed

CVE-2024-53939 was published Dec 3, 2024

IBM Security Verify Access Appliance 10.0.0 through 10.0.8 could allow a remote authenticated... Critical Unreviewed

CVE-2024-49803 was published Nov 29, 2024

Certain models of routers from Billion Electric has an OS Command Injection vulnerability,... High Unreviewed

CVE-2024-11983 was published Nov 29, 2024

A vulnerability in ESM 11.6.10 allows unauthenticated access to the internal Snowservice API and... Critical Unreviewed

CVE-2024-11482 was published Nov 29, 2024

The Logo Slider WordPress plugin before 4.5.0 does not sanitise and escape some of its Logo and... Moderate Unreviewed

CVE-2024-10896 was published Nov 28, 2024

An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121... Moderate Unreviewed

CVE-2024-51228 was published Nov 27, 2024

EnGenius EWS356-FIR 1.1.30 and earlier devices allow a remote attacker to execute arbitrary OS... High Unreviewed

CVE-2024-31976 was published Nov 27, 2024

The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for... High Unreviewed

CVE-2024-9461 was published Nov 26, 2024

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed

CVE-2024-50370 was published Nov 26, 2024

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command ('OS Command... High Unreviewed

CVE-2024-50368 was published Nov 26, 2024

A CWE-79 "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"... High Unreviewed

CVE-2024-50376 was published Nov 26, 2024

Previous 1…27…165 Next

Previous 1 2 … 25 26 27 28 29 … 164 165 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,102 advisories