GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,250
Composer 4,350
Erlang 31
GitHub Actions 22
Go 2,119
Maven 5,292
npm 3,778
NuGet 680
pip 3,459
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,747

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

847 advisories

Filter by severity

Sort by

Least recently updated

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection... Critical Unreviewed

CVE-2024-32353 was published May 14, 2024

TOTOLINK outdoor CPE CP450 v4.1.0cu.747_B20191224 was discovered to contain a command injection... Critical Unreviewed

CVE-2024-34204 was published May 14, 2024

D-Link DIR-845L router v1.01KRb03 and before is vulnerable to Command injection via the hnap_main... Critical Unreviewed

CVE-2024-33112 was published May 6, 2024

Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the ipurl... Critical Unreviewed

CVE-2024-33789 was published May 3, 2024

D-Link DIR-822+ V1.0.5 was found to contain a command injection in ftext function of... Critical Unreviewed

CVE-2024-33344 was published Apr 26, 2024

An OS command injection vulnerability has been reported to affect several QNAP operating system... Critical Unreviewed

CVE-2024-32766 was published Apr 26, 2024

Eclipse Target Management: Terminal and Remote System Explorer (RSE) version <= 4.5.400 has a... Critical Unreviewed

CVE-2024-0740 was published Apr 26, 2024

A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-OS... Critical Unreviewed

CVE-2024-3400 was published Apr 12, 2024

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-27972 was published Apr 3, 2024

A command injection vulnerability in Ivanti Sentry prior to 9.19.0 allows unauthenticated threat... Critical Unreviewed

CVE-2023-41724 was published Mar 31, 2024

Tenda AC18 V15.03.05.05 contains a command injection vulnerablility in the deviceName parameter... Critical Unreviewed

CVE-2024-28545 was published Mar 26, 2024

DIR-845L router <= v1.01KRb03 has an Unauthenticated remote code execution vulnerability in the... Critical Unreviewed

CVE-2024-29385 was published Mar 22, 2024

Distrobox before 1.7.0.1 allows attackers to execute arbitrary code via command injection into... Critical Unreviewed

CVE-2024-29864 was published Mar 21, 2024

There is a command injection vulnerability in the TRENDnet TEW-827DRU router with firmware... Critical Unreviewed

CVE-2024-28354 was published Mar 15, 2024

SAP NetWeaver Administrator AS Java (Administrator Log Viewer plug-in) - version 7.50, allows an... Critical Unreviewed

CVE-2024-22127 was published Mar 12, 2024

In Indo-Sol PROFINET-INspektor NT through 2.4.0, a command injection vulnerability in the... Critical Unreviewed

CVE-2023-49959 was published Feb 26, 2024

Netis WF2780 v2.1.40144 was discovered to contain a command injection vulnerability via the... Critical Unreviewed

CVE-2024-25850 was published Feb 22, 2024

Command Injection vulnerability in D-Link Dir 816 with firmware version DIR-816_A2_v1.10CNB04... Critical Unreviewed

CVE-2023-24331 was published Feb 21, 2024

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1378 was published Feb 13, 2024

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1374 was published Feb 13, 2024

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1372 was published Feb 13, 2024

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1359 was published Feb 13, 2024

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1369 was published Feb 13, 2024

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an... Critical Unreviewed

CVE-2024-1355 was published Feb 13, 2024

In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an unauthenticated user with... Critical Unreviewed

CVE-2023-46687 was published Feb 9, 2024

Previous 1 2 3 4 5 6 7 … 33 34 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

847 advisories