GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,035 advisories
Filter by severity
A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, DNS...
High
Unreviewed
CVE-2024-3273
was published
Apr 4, 2024
VMware SD-WAN Edge contains an unauthenticated command injection vulnerability potentially...
High
Unreviewed
CVE-2024-22246
was published
Apr 2, 2024
There is a command injection vulnerability in some Hikvision NVRs. This could allow an...
High
Unreviewed
CVE-2024-29949
was published
Apr 2, 2024
aliyundrive-webdav vulnerable to Command Injection
High
CVE-2024-29640
was published
for
aliyundrive-webdav
(pip)
Mar 29, 2024
Tenda F1202 v1.2.0.20(408) has a command injection vulnerablility in the formWriteFacMac function...
High
Unreviewed
CVE-2024-30637
was published
Mar 29, 2024
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web...
High
Unreviewed
CVE-2024-2947
was published
Mar 28, 2024
Gradio's CI vulnerable to Command Injection
High
CVE-2024-1540
was published
for
gradio
(pip)
Mar 27, 2024
•
withdrawn
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the Dashboard Examples Hub in the...
High
Unreviewed
CVE-2024-29946
was published
Mar 27, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-24897
was published
Mar 25, 2024
HGW BL1500HM Ver 002.001.013 and earlier allows a network-adjacent unauthenticated attacker to...
High
Unreviewed
CVE-2024-28041
was published
Mar 25, 2024
A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware <= v1...
High
Unreviewed
CVE-2024-29366
was published
Mar 22, 2024
A vulnerability was found in Ruijie RG-NBS2009G-P up to 20240305. It has been declared as...
High
Unreviewed
CVE-2024-2642
was published
Mar 20, 2024
RCE in TranformGraph().to_dot_graph function
High
CVE-2023-41334
was published
for
astropy
(pip)
Mar 18, 2024
There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware...
High
Unreviewed
CVE-2024-28353
was published
Mar 15, 2024
Vinchin Backup and Recovery 7.2 and Earlier is vulnerable to Authenticated Remote Code Execution ...
High
Unreviewed
CVE-2024-25228
was published
Mar 14, 2024
Outlook for Android Information Disclosure Vulnerability
High
Unreviewed
CVE-2024-26204
was published
Mar 12, 2024
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface....
High
Unreviewed
CVE-2024-1356
was published
Mar 5, 2024
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface....
High
Unreviewed
CVE-2024-25611
was published
Mar 5, 2024
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface....
High
Unreviewed
CVE-2024-25612
was published
Mar 5, 2024
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface....
High
Unreviewed
CVE-2024-25613
was published
Mar 5, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26295
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26298
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26296
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26297
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26294
was published
Feb 28, 2024
ProTip!
Advisories are also available from the
GraphQL API