GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
263 advisories
Filter by severity
TRENDnet TEW-815DAP 1.0.2.0 is vulnerable to Command Injection via the do_setNTP function. An...
Moderate
Unreviewed
CVE-2024-22546
was published
Apr 30, 2024
dcnnt-py is vulnerable to command injection via Notification Handler
Moderate
CVE-2023-1000
was published
for
dcnnt
(pip)
Apr 27, 2024
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject...
Moderate
Unreviewed
CVE-2024-28328
was published
Apr 26, 2024
Tenda FH1202 v1.2.0.14(408) firmware contains a command injection vulnerablility in the...
Moderate
Unreviewed
CVE-2024-32282
was published
Apr 17, 2024
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart...
Moderate
Unreviewed
CVE-2023-40146
was published
Apr 17, 2024
A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). Affected is...
Moderate
Unreviewed
CVE-2024-3908
was published
Apr 17, 2024
gix-transport indirect code execution via malicious username
Moderate
CVE-2024-32884
was published
for
gitoxide
(Rust)
Apr 15, 2024
An issue discovered in Alldata v0.4.6 allows attacker to run arbitrary commands via the processId...
Moderate
Unreviewed
CVE-2024-29435
was published
Apr 1, 2024
A vulnerability has been found in Tenda FH1205 2.0.0.7(775) and classified as critical. Affected...
Moderate
Unreviewed
CVE-2024-3009
was published
Mar 28, 2024
A vulnerability has been found in Tenda FH1203 2.0.1.6 and classified as critical. This...
Moderate
Unreviewed
CVE-2024-2991
was published
Mar 27, 2024
A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected...
Moderate
Unreviewed
CVE-2024-2982
was published
Mar 27, 2024
1Panel is vulnerable to command injection
Moderate
CVE-2024-2352
was published
for
github.com/1Panel-dev/1Panel
(Go)
Mar 10, 2024
An issue in TRENDnet TEW-822DRE v.1.03B02 allows a local attacker to execute arbitrary code via...
Moderate
Unreviewed
CVE-2023-51835
was published
Feb 29, 2024
Splinefont in FontForge through 20230101 allows command injection via crafted filenames.
Moderate
Unreviewed
CVE-2024-25081
was published
Feb 26, 2024
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as...
Moderate
Unreviewed
CVE-2024-1781
was published
Feb 23, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-47218
was published
Feb 13, 2024
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network...
Moderate
Unreviewed
CVE-2023-49716
was published
Feb 9, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41282
was published
Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41283
was published
Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-41281
was published
Feb 2, 2024
A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-0920
was published
Jan 26, 2024
A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical....
Moderate
Unreviewed
CVE-2024-0919
was published
Jan 26, 2024
A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual...
Moderate
Unreviewed
CVE-2024-20287
was published
Jan 17, 2024
An attacker with access to a Management Console user account with the editor role could escalate...
Moderate
Unreviewed
CVE-2024-0507
was published
Jan 16, 2024
A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452....
Moderate
Unreviewed
CVE-2024-0579
was published
Jan 16, 2024
ProTip!
Advisories are also available from the
GraphQL API