Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+

965 advisories

Loading
Unauthenticated remote attackers can access the system through the LoadMaster management... Critical Unreviewed
CVE-2024-1212 was published Feb 21, 2024
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... Critical Unreviewed
CVE-2023-6260 was published Feb 20, 2024
Adobe Commerce versions 2.4.6-p3, 2.4.5-p5, 2.4.4-p6 and earlier are affected by an Improper... Critical Unreviewed
CVE-2024-20720 was published Feb 15, 2024
The functionality for synchronization in HGiga OAKlouds' certain moudules has an OS Command... Critical Unreviewed
CVE-2024-26260 was published Feb 15, 2024
An OS command injection vulnerability exists in Akaunting v3.1.3 and earlier. An attacker can... Critical Unreviewed
CVE-2024-22836 was published Feb 8, 2024
Yealink Meeting Server before v26.0.0.66 was discovered to contain an OS command injection... Critical Unreviewed
CVE-2024-24091 was published Feb 8, 2024
An OS command injection vulnerability in Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier... Critical Unreviewed
CVE-2023-46359 was published Feb 6, 2024
An improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed
CVE-2024-23109 was published Feb 5, 2024
An improper neutralization of special elements used in an os command ('os command injection') in... Critical Unreviewed
CVE-2024-23108 was published Feb 5, 2024
OS command injection vulnerability in command processing or system call componentsROS2 (Robot... Critical Unreviewed
CVE-2023-51202 was published Jan 31, 2024
An issue discovered in shell command execution in ROS2 (Robot Operating System 2) Foxy Fitzroy,... Critical Unreviewed
CVE-2023-51197 was published Jan 31, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24333 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24327 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24329 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24331 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24330 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24332 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24328 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24326 was published Jan 30, 2024
TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection... Critical Unreviewed
CVE-2024-24325 was published Jan 30, 2024
An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the status path script... Critical Unreviewed
CVE-2023-38323 was published Jan 26, 2024
An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the FAS key entry in the... Critical Unreviewed
CVE-2023-38319 was published Jan 26, 2024
An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the network interface name... Critical Unreviewed
CVE-2023-38317 was published Jan 26, 2024
An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the gateway FQDN entry in... Critical Unreviewed
CVE-2023-38318 was published Jan 26, 2024
TOTOlink EX1800T V9.1.0cu.2112_B20220316 was discovered to contain a remote command execution ... Critical Unreviewed
CVE-2023-52026 was published Jan 12, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database