Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

263 advisories

Loading
TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An... Moderate Unreviewed
CVE-2024-22546 was published Apr 30, 2024
dcnnt-py is vulnerable to command injection via Notification Handler Moderate
CVE-2023-1000 was published for dcnnt (pip) Apr 27, 2024
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject... Moderate Unreviewed
CVE-2024-28328 was published Apr 26, 2024
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the... Moderate Unreviewed
CVE-2024-32282 was published Apr 17, 2024
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart... Moderate Unreviewed
CVE-2023-40146 was published Apr 17, 2024
A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). Affected is... Moderate Unreviewed
CVE-2024-3908 was published Apr 17, 2024
gix-transport indirect code execution via malicious username Moderate
CVE-2024-32884 was published for gitoxide (Rust) Apr 15, 2024
EliahKagan
An issue discovered in Alldata v0.4.6 allows attacker to run arbitrary commands via the processId... Moderate Unreviewed
CVE-2024-29435 was published Apr 1, 2024
A vulnerability has been found in Tenda FH1205 2.0.0.7(775) and classified as critical. Affected... Moderate Unreviewed
CVE-2024-3009 was published Mar 28, 2024
A vulnerability has been found in Tenda FH1203 2.0.1.6 and classified as critical. This... Moderate Unreviewed
CVE-2024-2991 was published Mar 27, 2024
A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected... Moderate Unreviewed
CVE-2024-2982 was published Mar 27, 2024
1Panel is vulnerable to command injection Moderate
CVE-2024-2352 was published for github.com/1Panel-dev/1Panel (Go) Mar 10, 2024
An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via... Moderate Unreviewed
CVE-2023-51835 was published Feb 29, 2024
Splinefont in FontForge through 20230101 allows command injection via crafted filenames. Moderate Unreviewed
CVE-2024-25081 was published Feb 26, 2024
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as... Moderate Unreviewed
CVE-2024-1781 was published Feb 23, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-47218 was published Feb 13, 2024
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network... Moderate Unreviewed
CVE-2023-49716 was published Feb 9, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41282 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41283 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41281 was published Feb 2, 2024
A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-0920 was published Jan 26, 2024
A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical.... Moderate Unreviewed
CVE-2024-0919 was published Jan 26, 2024
A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual... Moderate Unreviewed
CVE-2024-20287 was published Jan 17, 2024
An attacker with access to a Management Console user account with the editor role could escalate... Moderate Unreviewed
CVE-2024-0507 was published Jan 16, 2024
A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452.... Moderate Unreviewed
CVE-2024-0579 was published Jan 16, 2024
ProTip! Advisories are also available from the GraphQL API