GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
891 advisories
Filter by severity
Netgear EX6120 v1.0.0.68 is vulnerable to Command Injection in genie_fix2.cgi via the...
High
Unreviewed
CVE-2024-35518
was published
Oct 15, 2024
Netgear EX6120 v1.0.0.68, Netgear EX6100 v1.0.2.28, and Netgear EX3700 v1.0.0.96 are vulnerable...
High
Unreviewed
CVE-2024-35519
was published
Oct 15, 2024
Netgear R7000 1.0.11.136 is vulnerable to Command Injection in RMT_invite.cgi via device_name2...
High
Unreviewed
CVE-2024-35520
was published
Oct 15, 2024
A vulnerability was discovered in DI_8200-16.07.26A1, which has been classified as critical. This...
High
Unreviewed
CVE-2024-44413
was published
Oct 11, 2024
In Progress Telerik Reporting versions prior to 2024 Q3 (2024.3.924), a command injection attack...
High
Unreviewed
CVE-2024-7840
was published
Oct 9, 2024
Visual Studio Code for Linux Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-43601
was published
Oct 8, 2024
Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability
High
Unreviewed
CVE-2024-43591
was published
Oct 8, 2024
An OS command injection vulnerability in the admin web console of Ivanti CSA before version 5.0.2...
High
Unreviewed
CVE-2024-9380
was published
Oct 8, 2024
Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_unzip...
High
Unreviewed
CVE-2024-46084
was published
Oct 1, 2024
Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz (legacy) Visual...
High
Unreviewed
CVE-2024-9145
was published
Oct 1, 2024
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an...
High
Unreviewed
CVE-2024-39577
was published
Sep 26, 2024
In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection...
High
Unreviewed
CVE-2024-7679
was published
Sep 25, 2024
In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack...
High
Unreviewed
CVE-2024-7575
was published
Sep 25, 2024
There is a command injection vulnerability that may allow an attacker to inject malicious input...
High
Unreviewed
CVE-2024-45682
was published
Sep 17, 2024
A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi...
High
Unreviewed
CVE-2024-42025
was published
Sep 13, 2024
Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i
High
Unreviewed
CVE-2024-46048
was published
Sep 13, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17...
High
Unreviewed
CVE-2024-8640
was published
Sep 12, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-44572
was published
Sep 11, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the...
High
Unreviewed
CVE-2024-44570
was published
Sep 11, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-44574
was published
Sep 11, 2024
RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-44577
was published
Sep 11, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38228
was published
Sep 10, 2024
Microsoft SharePoint Server Remote Code Execution Vulnerability
High
Unreviewed
CVE-2024-38227
was published
Sep 10, 2024
Command Injection vulnerability in goform/SetIPTVCfg interface of Tenda AC15 V15.03.05.20 allows...
High
Unreviewed
CVE-2023-36103
was published
Sep 10, 2024
An improper neutralization of special elements used in a command ('Command Injection')...
High
Unreviewed
CVE-2024-33508
was published
Sep 10, 2024
ProTip!
Advisories are also available from the
GraphQL API