GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,250
Composer 4,350
Erlang 31
GitHub Actions 22
Go 2,119
Maven 5,292
npm 3,778
NuGet 680
pip 3,459
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,721

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

1,021 advisories

Filter by severity

Sort by

Least recently updated

IBM Security Verify Directory 10.0.0 through 10.0.3 could allow a remote authenticated attacker... Critical Unreviewed

CVE-2024-51450 was published Feb 6, 2025

OpenPanel v0.3.4 was discovered to contain an OS command injection vulnerability via the timezone... Critical Unreviewed

CVE-2024-53584 was published Jan 31, 2025

Affected products contain a vulnerability in the device cloud rpc command handling process that... Critical Unreviewed

CVE-2025-0680 was published Jan 30, 2025

mySCADA myPRO does not properly neutralize POST requests sent to a specific port with email... Critical Unreviewed

CVE-2025-20061 was published Jan 29, 2025

mySCADA myPRO does not properly neutralize POST requests sent to a specific port with version... Critical Unreviewed

CVE-2025-20014 was published Jan 29, 2025

A Remote Code Execution Vulnerability exists in the product and version listed above. The... Critical Unreviewed

CVE-2025-24480 was published Jan 28, 2025

DLINK DIR-825 REVB 2.03 devices have an OS command injection vulnerability in the CGl interface... Critical Unreviewed

CVE-2024-57595 was published Jan 27, 2025

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Critical Unreviewed

CVE-2024-13502 was published Jan 17, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57019 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57017 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57018 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57020 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57015 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57014 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57022 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57021 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57016 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57012 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57011 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Critical Unreviewed

CVE-2024-57013 was published Jan 15, 2025

OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340... Critical Unreviewed

CVE-2025-20055 was published Jan 14, 2025

An OS Command Injection vulnerability was found in /landrecordsys/admin/dashboard.php in... Critical Unreviewed

CVE-2024-57687 was published Jan 10, 2025

Command injection in the <redacted> parameter of a <redacted>.exe request leads to remote code... Critical Unreviewed

CVE-2024-43648 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43655 was published Jan 9, 2025

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed

CVE-2024-43653 was published Jan 9, 2025

Previous 1 2 3 4 5 … 40 41 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,021 advisories