Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

306 advisories

Loading
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20230807. It... Moderate Unreviewed
CVE-2023-4414 was published Aug 18, 2023
gix-transport indirect code execution via malicious username Moderate
CVE-2024-32884 was published for gitoxide (Rust) Apr 15, 2024
EliahKagan
dcnnt-py is vulnerable to command injection via Notification Handler Moderate
CVE-2023-1000 was published for dcnnt (pip) Apr 27, 2024
1Panel arbitrary file write vulnerability Moderate
CVE-2024-34352 was published for github.com/1Panel-dev/1Panel (Go) May 9, 2024
an5er
A vulnerability was found in Arris VAP2500 08.50. It has been declared as critical. Affected by... Moderate Unreviewed
CVE-2024-5194 was published May 22, 2024
A vulnerability classified as critical has been found in Arris VAP2500 08.50. This affects an... Moderate Unreviewed
CVE-2024-5196 was published May 22, 2024
A vulnerability was found in Arris VAP2500 08.50. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2024-5195 was published May 22, 2024
A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This... Moderate Unreviewed
CVE-2024-6269 was published Jun 23, 2024
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject... Moderate Unreviewed
CVE-2024-28328 was published Apr 26, 2024
TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An... Moderate Unreviewed
CVE-2024-22546 was published Apr 30, 2024
D-LINK DIR-845L <=v1.01KRb03 is vulnerable to Information disclosurey via bsc_sms_inbox.php. Moderate Unreviewed
CVE-2024-33113 was published May 6, 2024
TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-34206 was published May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection... Moderate Unreviewed
CVE-2024-32354 was published May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an authenticated remote command... Moderate Unreviewed
CVE-2024-32349 was published May 14, 2024
WAVLINK WN551K1 found a command injection vulnerability through the start_hour parameter of /cgi... Moderate Unreviewed
CVE-2024-38896 was published Jun 24, 2024
WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin... Moderate Unreviewed
CVE-2024-38894 was published Jun 24, 2024
H3C Magic R230 V100R002's udpserver opens port 9034, allowing attackers to execute arbitrary... Moderate Unreviewed
CVE-2024-38903 was published Jun 24, 2024
In streampark, the project module integrates Maven's compilation capabilities. The input... Moderate Unreviewed
CVE-2024-29737 was published Jul 17, 2024
In streampark, the project module integrates Maven's compilation capabilities. The input... Moderate Unreviewed
CVE-2023-52291 was published Jul 17, 2024
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the... Moderate Unreviewed
CVE-2024-32282 was published Apr 17, 2024
An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary... Moderate Unreviewed
CVE-2023-24046 was published Dec 5, 2023
An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect... Moderate Unreviewed
CVE-2024-41136 was published Jul 24, 2024
A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This... Moderate Unreviewed
CVE-2024-7436 was published Aug 3, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has... Moderate Unreviewed
CVE-2024-7440 was published Aug 3, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek SD9364 VVTK-0103f. It has... Moderate Unreviewed
CVE-2024-7442 was published Aug 3, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database