GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,245 advisories
Filter by severity
Zabbix allows to configure SMS notifications. AT command injection occurs on "Zabbix Server"...
Low
Unreviewed
CVE-2024-22122
was published
Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
Critical
Unreviewed
CVE-2024-21878
was published
Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-21879
was published
Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-21880
was published
Aug 12, 2024
Firmware in KAON AR2140 routers prior to version 4.2.16 is vulnerable to a shell command...
High
Unreviewed
CVE-2024-3659
was published
Aug 8, 2024
An issue in Koha ILS 23.05 and before allows a remote attacker to execute arbitrary code via a...
Critical
Unreviewed
CVE-2024-28739
was published
Aug 6, 2024
CasaOS Command Injection vulnerability
High
CVE-2023-37469
was published
for
github.com/IceWhaleTech/CasaOS
(Go)
Aug 5, 2024
Improper filering of special characters result in a command ('command injection') vulnerability...
Critical
Unreviewed
CVE-2024-7397
was published
Aug 5, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK CP900 6.3c.566....
Moderate
Unreviewed
CVE-2024-7464
was published
Aug 5, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in Vivotek...
Moderate
Unreviewed
CVE-2024-7443
was published
Aug 3, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has...
Moderate
Unreviewed
CVE-2024-7440
was published
Aug 3, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek SD9364 VVTK-0103f. It has...
Moderate
Unreviewed
CVE-2024-7442
was published
Aug 3, 2024
A vulnerability, which was classified as critical, has been found in D-Link DI-8100 16.07. This...
Moderate
Unreviewed
CVE-2024-7436
was published
Aug 3, 2024
Commands can be injected over the network and executed without authentication.
High
Unreviewed
CVE-2024-7029
was published
Aug 2, 2024
A command injection vulnerability could allow an authenticated user to execute operating system...
High
Unreviewed
CVE-2022-4002
was published
Jul 31, 2024
A vulnerability was found in TOTOLINK LR1200 9.3.1cu.2832 and classified as critical. Affected by...
Moderate
Unreviewed
CVE-2024-7215
was published
Jul 30, 2024
A vulnerability has been found in TOTOLINK LR350 9.3.5u.6369_B20220309 and classified as critical...
Moderate
Unreviewed
CVE-2024-7214
was published
Jul 30, 2024
RaspAP allows an attacker to escalate privileges
Critical
CVE-2024-41637
was published
for
billz/raspap-webgui
(Composer)
Jul 29, 2024
A vulnerability classified as critical was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. This...
Moderate
Unreviewed
CVE-2024-7181
was published
Jul 29, 2024
A vulnerability was found in TOTOLINK A3600R 4.1.2cu.5182_B20201102. It has been classified as...
High
Unreviewed
CVE-2024-7177
was published
Jul 29, 2024
A vulnerability, which was classified as critical, was found in TOTOLINK A3600R 4.1.2cu...
High
Unreviewed
CVE-2024-7174
was published
Jul 29, 2024
A vulnerability was found in TOTOLINK A3100R 4.1.2cu.5050_B20200504. It has been declared as...
Moderate
Unreviewed
CVE-2024-7158
was published
Jul 28, 2024
A vulnerability classified as critical has been found in TOTOLINK A3700R 9.1.2u.5822_B20200513....
Moderate
Unreviewed
CVE-2024-7160
was published
Jul 28, 2024
Starship vulnerable to shell injection via undocumented, unpredictable shell expansion in custom commands
High
CVE-2024-41815
was published
for
starship
(Rust)
Jul 26, 2024
An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect...
Moderate
Unreviewed
CVE-2024-41136
was published
Jul 24, 2024
ProTip!
Advisories are also available from the
GraphQL API