GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,939
Maven
5,000+
npm
3,677
NuGet
643
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
352 advisories
Filter by severity
A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This...
Moderate
Unreviewed
CVE-2005-10003
was published
Oct 17, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series...
Moderate
Unreviewed
CVE-2024-20459
was published
Oct 16, 2024
A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could...
Moderate
Unreviewed
CVE-2024-20461
was published
Oct 16, 2024
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The...
Moderate
Unreviewed
CVE-2024-22033
was published
Oct 16, 2024
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1...
Moderate
Unreviewed
CVE-2024-9977
was published
Oct 15, 2024
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected...
Moderate
Unreviewed
CVE-2024-9916
was published
Oct 13, 2024
ggit is vulnerable to Command Injection via the fetchTags(branch) API
Moderate
CVE-2024-21532
was published
for
ggit
(npm)
Oct 8, 2024
DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability...
Moderate
Unreviewed
CVE-2024-41585
was published
Oct 3, 2024
git-shallow-clone OS Command Injection vulnerability
Moderate
CVE-2024-21531
was published
for
git-shallow-clone
(npm)
Oct 1, 2024
Alpine Halo9 UPDM_wemCmdUpdFSpeDecomp Command Injection Remote Code Execution Vulnerability. This...
Moderate
Unreviewed
CVE-2024-23961
was published
Sep 28, 2024
Alpine Halo9 UPDM_wemCmdCreatSHA256Hash Command Injection Remote Code Execution Vulnerability....
Moderate
Unreviewed
CVE-2024-23924
was published
Sep 28, 2024
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue...
Moderate
Unreviewed
CVE-2024-9076
was published
Sep 22, 2024
A vulnerability was found in TOTOLINK T10 4.1.8cu.5207. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-9001
was published
Sep 19, 2024
A vulnerability classified as critical has been found in D-Link DAR-7000 up to 20240912. Affected...
Moderate
Unreviewed
CVE-2024-9004
was published
Sep 19, 2024
OS command injection vulnerability exists in BUFFALO wireless LAN routers and wireless LAN...
Moderate
Unreviewed
CVE-2024-44072
was published
Sep 10, 2024
A vulnerability has been found in TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 and classified as...
Moderate
Unreviewed
CVE-2024-8574
was published
Sep 8, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2024-21906
was published
Sep 6, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-34979
was published
Sep 6, 2024
A vulnerability in specific CLI commands in Cisco Identity Services Engine (ISE) could allow an...
Moderate
Unreviewed
CVE-2024-20469
was published
Sep 4, 2024
Nuclei Template Signature Verification Bypass
Moderate
CVE-2024-43405
was published
for
github.com/projectdiscovery/nuclei/v3
(Go)
Sep 4, 2024
A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, low-privileged,...
Moderate
Unreviewed
CVE-2024-20289
was published
Aug 28, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-8211
was published
Aug 27, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,...
Moderate
Unreviewed
CVE-2024-8210
was published
Aug 27, 2024
A vulnerability classified as critical was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320,...
Moderate
Unreviewed
CVE-2024-8214
was published
Aug 27, 2024
A vulnerability classified as critical has been found in D-Link DNS-120, DNR-202L, DNS-315L, DNS...
Moderate
Unreviewed
CVE-2024-8213
was published
Aug 27, 2024
ProTip!
Advisories are also available from the
GraphQL API