Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
33
GitHub Actions
22
Go
2,121
Maven
5,000+
npm
3,783
NuGet
683
pip
3,465
Pub
12
RubyGems
893
Rust
892
Swift
38
Unreviewed advisories
All unreviewed
5,000+

388 advisories

Loading
A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240419... Moderate Unreviewed
CVE-2024-4255 was published Apr 27, 2024
Michlol - rashim web interface Insecure direct object references (IDOR). First of all, the... Moderate Unreviewed
CVE-2022-34769 was published Aug 6, 2022
A vulnerability in the Cisco Adaptive Security Appliance (ASA) restore functionality that is... Moderate Unreviewed
CVE-2024-20358 was published Apr 24, 2024
Renovate vulnerable to arbitrary command injection via helmv3 manager and registryAliases Moderate
GHSA-rqgv-292v-5qgr was published for renovate (npm) Apr 23, 2024
meyfa
PAX A930 device with PayDroid_7.1.1_Virgo_V04.5.02_20220722 can allow the execution of arbitrary... Moderate Unreviewed
CVE-2023-27198 was published Jul 5, 2023
PAX Technology A930 PayDroid 7.1.1 Virgo V04.4.02 20211201 was discovered to be vulnerable to... Moderate Unreviewed
CVE-2022-26580 was published Dec 17, 2022
A vulnerability, which was classified as critical, was found in Beijing Baichuo Smart S45F Multi... Moderate Unreviewed
CVE-2023-4873 was published Sep 10, 2023
A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This... Moderate Unreviewed
CVE-2024-3880 was published Apr 16, 2024
A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This... Moderate Unreviewed
CVE-2024-3739 was published Apr 13, 2024
A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical.... Moderate Unreviewed
CVE-2024-3721 was published Apr 13, 2024
Operating system command injection vulnerability in Planet IGS-4215-16T2S, affecting firmware... Moderate Unreviewed
CVE-2024-2742 was published Apr 11, 2024
An improper neutralization of special elements used in an os command ('os command injection') in... Moderate Unreviewed
CVE-2023-47540 was published Apr 9, 2024
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20231012. It... Moderate Unreviewed
CVE-2023-5684 was published Oct 21, 2023
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20231010 and... Moderate Unreviewed
CVE-2023-5683 was published Oct 21, 2023
A vulnerability was found in Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent... Moderate Unreviewed
CVE-2023-5494 was published Oct 10, 2023
A vulnerability was found in Byzro Smart S80 up to 20240328. It has been declared as critical.... Moderate Unreviewed
CVE-2024-3346 was published Apr 5, 2024
An attacker having physical access to WDM can plug USB device to gain access and execute unwanted... Moderate Unreviewed
CVE-2022-46361 was published Jul 6, 2023
A command injection vulnerability exists in the administrative web portal in TP-Link Archer... Moderate Unreviewed
CVE-2023-31756 was published May 19, 2023
OS Command Injection in TripleData Reporting Engine in Tripleplay Platform releases prior to... Moderate Unreviewed
CVE-2023-25759 was published Apr 19, 2023
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an... Moderate Unreviewed
CVE-2019-1959 was published May 24, 2022
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an... Moderate Unreviewed
CVE-2019-1960 was published May 24, 2022
TP-Link Omada ER605 Access Control Command Injection Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-1180 was published Apr 3, 2024
A vulnerability, which was classified as critical, has been found in Ruijie RG-EG350 up to... Moderate Unreviewed
CVE-2024-2910 was published Mar 26, 2024
A vulnerability classified as critical has been found in Tenda AC7 15.03.06.44. Affected is the... Moderate Unreviewed
CVE-2024-2897 was published Mar 26, 2024
Fluid vulnerable to OS Command Injection for Fluid Users with JuicefsRuntime Moderate
CVE-2023-51699 was published for github.com/fluid-cloudnative/fluid (Go) Mar 15, 2024
zhang-x-z
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database