Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,903 advisories

Loading
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48638 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain multiple command... High Unreviewed
CVE-2024-48633 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48636 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48634 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48629 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48631 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48637 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48630 was published Oct 17, 2024
D-Link DIR_882_FW130B06 and DIR_878 DIR_878_FW130B08 were discovered to contain a command... High Unreviewed
CVE-2024-48635 was published Oct 17, 2024
A vulnerability classified as critical has been found in mikexstudios Xcomic up to 0.8.2. This... Moderate Unreviewed
CVE-2005-10003 was published Oct 17, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone... High Unreviewed
CVE-2024-20458 was published Oct 16, 2024
A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series... Moderate Unreviewed
CVE-2024-20459 was published Oct 16, 2024
A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could... Moderate Unreviewed
CVE-2024-20461 was published Oct 16, 2024
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The... Moderate Unreviewed
CVE-2024-22033 was published Oct 16, 2024
A vulnerability, which was classified as critical, was found in MitraStar GPT-2541GNAC BR_g5.6_1... Moderate Unreviewed
CVE-2024-9977 was published Oct 15, 2024
The affected product permits OS command injection through improperly restricted commands,... High Unreviewed
CVE-2024-9139 was published Oct 14, 2024
A vulnerability, which was classified as critical, has been found in HuangDou UTCMS V9. Affected... Moderate Unreviewed
CVE-2024-9916 was published Oct 13, 2024
A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This... Moderate Unreviewed
CVE-2024-9793 was published Oct 10, 2024
An OS command injection vulnerability in Palo Alto Networks Expedition allows an authenticated... Critical Unreviewed
CVE-2024-9464 was published Oct 9, 2024
An OS command injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated... Critical Unreviewed
CVE-2024-9463 was published Oct 9, 2024
DrayTek Vigor3900 v1.5.1.6 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-46316 was published Oct 9, 2024
On Windows platforms, a "best fit" character encoding conversion of command line arguments to... High Unreviewed
CVE-2024-45720 was published Oct 9, 2024
An OS command injection vulnerability in the admin web console of Ivanti CSA before version 5.0.2... High Unreviewed
CVE-2024-9380 was published Oct 8, 2024
A command injection vulnerability exists in Motorola CX2L router v1.0.2 and below. The... High Unreviewed
CVE-2024-45880 was published Oct 8, 2024
Elsight – CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command... Critical Unreviewed
CVE-2024-45251 was published Oct 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database