GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,003
Composer 4,299
Erlang 31
GitHub Actions 21
Go 2,064
Maven 5,240
npm 3,744
NuGet 668
pip 3,424
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 239,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,058 advisories

Filter by severity

Sort by

Least recently updated

Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client... High Unreviewed

CVE-2024-54007 was published Jan 7, 2025

Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client... High Unreviewed

CVE-2024-54006 was published Jan 7, 2025

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by... High Unreviewed

CVE-2024-13129 was published Jan 4, 2025

An unintended entry point vulnerability has been identified in certain router models, which may... High Unreviewed

CVE-2024-13062 was published Jan 2, 2025

A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and... Moderate Unreviewed

CVE-2024-12986 was published Dec 27, 2024

A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1... Moderate Unreviewed

CVE-2024-12987 was published Dec 27, 2024

A vulnerability classified as critical was found in Overtek OT-E801G OTE801G65.1.1.0. This... Moderate Unreviewed

CVE-2024-12985 was published Dec 27, 2024

A command injection is possible through the user interface, allowing arbitrary command execution... High Unreviewed

CVE-2020-13712 was published Dec 21, 2024

There is a command injection vulnerability in Huawei terminal printer product. Successful... Critical Unreviewed

CVE-2022-32203 was published Dec 20, 2024

In a specific scenario a LDAP user can abuse the authentication process in OpenText Privileged... High Unreviewed

CVE-2024-12111 was published Dec 19, 2024

A command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-23356 was published Dec 19, 2024

SeaCMS <=13.0 is vulnerable to command execution in phome.php via the function... Critical Unreviewed

CVE-2024-55461 was published Dec 19, 2024

In ThreatQuotient ThreatQ before 5.29.3, authenticated users are able to execute arbitrary... High Unreviewed

CVE-2024-39703 was published Dec 18, 2024

A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support... Critical Unreviewed

CVE-2024-12356 was published Dec 17, 2024

An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while... Moderate Unreviewed

CVE-2024-56087 was published Dec 16, 2024

An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads in... High Unreviewed

CVE-2024-56086 was published Dec 16, 2024

An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while... Moderate Unreviewed

CVE-2024-56085 was published Dec 16, 2024

An issue was discovered in Logpoint UniversalNormalizer before 5.7.0. Authenticated users can... High Unreviewed

CVE-2024-56084 was published Dec 16, 2024

In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an... Critical Unreviewed

CVE-2024-55956 was published Dec 13, 2024

Dell ThinOS version 2408 contains an Improper Neutralization of Special Elements used in a... High Unreviewed

CVE-2024-53290 was published Dec 11, 2024

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has... Moderate Unreviewed

CVE-2024-11651 was published Dec 11, 2024

A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has... Moderate Unreviewed

CVE-2024-11652 was published Dec 11, 2024

Command injection in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure... Critical Unreviewed

CVE-2024-11634 was published Dec 10, 2024

Command injection in the admin web console of Ivanti CSA before version 5.0.3 allows a remote... Critical Unreviewed

CVE-2024-11772 was published Dec 10, 2024

Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting ... High Unreviewed

CVE-2024-55544 was published Dec 10, 2024

Previous 1 2 3 4 5 … 82 83 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,058 advisories