GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,003
Composer 4,299
Erlang 31
GitHub Actions 21
Go 2,064
Maven 5,240
npm 3,744
NuGet 668
pip 3,424
Pub 12
RubyGems 892
Rust 877
Swift 36

Unreviewed advisories

All unreviewed 239,970

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,058 advisories

Filter by severity

Sort by

Least recently updated

Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client... High Unreviewed

CVE-2024-54006 was published Jan 7, 2025

Multiple command injection vulnerabilities exist in the web interface of the 501 Wireless Client... High Unreviewed

CVE-2024-54007 was published Jan 7, 2025

sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script ... High Unreviewed

CVE-2012-1823 was published May 14, 2022

D-Link GO-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 is vulnerable to Command... Critical Unreviewed

CVE-2022-37056 was published Aug 29, 2022

D-Link Go-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 are vulnerable to... Critical Unreviewed

CVE-2022-37057 was published Aug 29, 2022

D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Command injection via the hnap_main... Critical Unreviewed

CVE-2024-33112 was published May 6, 2024

The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote... High Unreviewed

CVE-2015-2051 was published May 17, 2022

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by... High Unreviewed

CVE-2024-13129 was published Jan 4, 2025

An unintended entry point vulnerability has been identified in certain router models, which may... High Unreviewed

CVE-2024-13062 was published Jan 2, 2025

SeaCMS <=13.0 is vulnerable to command execution in phome.php via the function... Critical Unreviewed

CVE-2024-55461 was published Dec 19, 2024

A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and... Moderate Unreviewed

CVE-2024-12986 was published Dec 27, 2024

A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1... Moderate Unreviewed

CVE-2024-12987 was published Dec 27, 2024

A vulnerability classified as critical was found in Overtek OT-E801G OTE801G65.1.1.0. This... Moderate Unreviewed

CVE-2024-12985 was published Dec 27, 2024

A command injection is possible through the user interface, allowing arbitrary command execution... High Unreviewed

CVE-2020-13712 was published Dec 21, 2024

Sublime Text 4 was discovered to contain a command injection vulnerability via the New Build... Critical Unreviewed

CVE-2024-25255 was published Nov 12, 2024

In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an... Critical Unreviewed

CVE-2024-55956 was published Dec 13, 2024

There is a command injection vulnerability in Huawei terminal printer product. Successful... Critical Unreviewed

CVE-2022-32203 was published Dec 20, 2024

In a specific scenario a LDAP user can abuse the authentication process in OpenText Privileged... High Unreviewed

CVE-2024-12111 was published Dec 19, 2024

A command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-23356 was published Dec 19, 2024

In ThreatQuotient ThreatQ before 5.29.3, authenticated users are able to execute arbitrary... High Unreviewed

CVE-2024-39703 was published Dec 18, 2024

A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support... Critical Unreviewed

CVE-2024-12356 was published Dec 17, 2024

An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads in... High Unreviewed

CVE-2024-56086 was published Dec 16, 2024

An issue was discovered in Logpoint UniversalNormalizer before 5.7.0. Authenticated users can... High Unreviewed

CVE-2024-56084 was published Dec 16, 2024

An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while... Moderate Unreviewed

CVE-2024-56087 was published Dec 16, 2024

An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while... Moderate Unreviewed

CVE-2024-56085 was published Dec 16, 2024

Previous 1 2 3 4 5 … 82 83 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,058 advisories