GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
1,929 advisories
Filter by severity
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual...
High
Unreviewed
CVE-2024-53899
was published
Nov 24, 2024
Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-8809
was published
Nov 22, 2024
Cohesive Networks VNS3 Command Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-8808
was published
Nov 22, 2024
Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-5719
was published
Nov 22, 2024
Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-5717
was published
Nov 22, 2024
Logsign Unified SecOps Platform Command Injection Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-5720
was published
Nov 22, 2024
OS command injection vulnerability exists in AIPHONE IX SYSTEM and IXG SYSTEM. A network-adjacent...
High
Unreviewed
CVE-2024-31408
was published
Nov 22, 2024
LLama Factory Remote OS Command Injection Vulnerability
High
CVE-2024-52803
was published
for
llamafactory
(pip)
Nov 21, 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue...
High
Unreviewed
CVE-2024-48895
was published
Nov 20, 2024
A security agent manual scan command injection vulnerability in the Trend Micro Deep Security 20...
High
Unreviewed
CVE-2024-51503
was published
Nov 19, 2024
Qualys discovered that needrestart, before version 3.8, passes unsanitized data to a library ...
High
Unreviewed
CVE-2024-11003
was published
Nov 19, 2024
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an...
High
Unreviewed
CVE-2022-20655
was published
Nov 15, 2024
Zoraxy has an authenticated command injection in the Web SSH feature
High
CVE-2024-52010
was published
for
github.com/tobychui/zoraxy
(Go)
Nov 12, 2024
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue...
High
Unreviewed
CVE-2024-45827
was published
Nov 12, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11064
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11065
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11063
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11066
was published
Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers...
High
Unreviewed
CVE-2024-11062
was published
Nov 11, 2024
Wi-Fi Alliance wfa_dut (in Wi-Fi Test Suite) through 9.0.0 allows OS command injection via 802...
High
Unreviewed
CVE-2024-41992
was published
Nov 11, 2024
The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the...
High
Unreviewed
CVE-2024-50809
was published
Nov 8, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-51023
was published
Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52018
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52019
was published
Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the...
High
Unreviewed
CVE-2024-52020
was published
Nov 5, 2024
ProTip!
Advisories are also available from the
GraphQL API