GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,020 advisories
Filter by severity
Tenda W30E v1.0 V1.0.1.25(633) firmware contains a command injection vulnerablility in the...
High
Unreviewed
CVE-2024-32292
was published
Apr 17, 2024
A Heap Overflow vulnerability in WLInfoRailService component of Ivanti Avalanche before 6.4.3...
High
Unreviewed
CVE-2024-22061
was published
Apr 19, 2024
D-Link DIR-822+ V1.0.5 was found to contain a command injection in SetPlcNetworkpwd function of...
High
Unreviewed
CVE-2024-33342
was published
Apr 26, 2024
Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-33788
was published
May 6, 2024
A Blind command injection vulnerability in Tenda O3V2 V1.0.0.12 and earlier allows remote...
High
Unreviewed
CVE-2024-34338
was published
May 14, 2024
TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain a command injection...
High
Unreviewed
CVE-2024-32355
was published
May 14, 2024
A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could...
High
Unreviewed
CVE-2024-20326
was published
May 16, 2024
Command injection vulnerability in nw_interface.html in SHARP multifunction printers (MFPs)'s...
High
Unreviewed
CVE-2022-45796
was published
Dec 27, 2022
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050...
High
Unreviewed
CVE-2023-33919
was published
Jun 13, 2023
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions...
High
Unreviewed
CVE-2024-36983
was published
Jul 1, 2024
A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows...
High
Unreviewed
CVE-2024-4944
was published
Jul 9, 2024
Livestatus Query Language (LQL) injection in the AuthUser HTTP query header of Tribe29's Checkmk ...
High
Unreviewed
CVE-2022-47909
was published
Feb 20, 2023
DrayTek Vigor2960 v1.5.1.4 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2023-24229
was published
Mar 15, 2023
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line...
High
Unreviewed
CVE-2024-41135
was published
Jul 24, 2024
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line...
High
Unreviewed
CVE-2024-41133
was published
Jul 24, 2024
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line...
High
Unreviewed
CVE-2024-41134
was published
Jul 24, 2024
Command Injection vulnerability in D-Link Dir 882 with firmware version DIR882A1_FW130B06 allows...
High
Unreviewed
CVE-2023-24330
was published
Feb 21, 2024
An issue was discovered in Linksys Router E1700 version 1.0.04 (build 3), allows authenticated...
High
Unreviewed
CVE-2024-22544
was published
Feb 27, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26294
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26295
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26296
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26298
was published
Feb 28, 2024
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote...
High
Unreviewed
CVE-2024-26297
was published
Feb 28, 2024
HGW BL1500HM Ver 002.001.013 and earlier allows a network-adjacent unauthenticated attacker to...
High
Unreviewed
CVE-2024-28041
was published
Mar 25, 2024
ProTip!
Advisories are also available from the
GraphQL API