Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,247
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,205 advisories

Loading
An issue was discovered in GitLab EE affecting all versions starting 17.0 to 17.1.6, 17.2 prior... Moderate Unreviewed
CVE-2024-7110 was published Aug 22, 2024
DrayTek Vigor 3900 before v1.5.1.5_Beta, DrayTek Vigor 2960 before v1.5.1.5_Beta and DrayTek... High Unreviewed
CVE-2024-43027 was published Aug 21, 2024
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW,... Moderate Unreviewed
CVE-2024-7922 was published Aug 19, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK X6000R 9.4.0cu... Moderate Unreviewed
CVE-2024-7907 was published Aug 18, 2024
A vulnerability was found in Tosei Online Store Management System ネット店舗管理システム 4.02/4.03/4.04. It... Moderate Unreviewed
CVE-2024-7896 was published Aug 17, 2024
A vulnerability classified as critical has been found in Tosei Online Store Management System... Moderate Unreviewed
CVE-2024-7897 was published Aug 17, 2024
An issue in the handler function in /goform/telnet of Tenda FH1201 v1.2.0.14 (408) allows... Critical Unreviewed
CVE-2024-42947 was published Aug 15, 2024
A vulnerability was found in D-Link DI-8100 16.07. It has been classified as critical. This... Moderate Unreviewed
CVE-2024-7833 was published Aug 15, 2024
A command injection issue in Palo Alto Networks Cortex XSOAR CommonScripts Pack allows an... High Unreviewed
CVE-2024-5914 was published Aug 14, 2024
Command Injection in sequenceserver Critical
CVE-2024-42360 was published for sequenceserver (RubyGems) Aug 13, 2024
drpowell tadast
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L,... Moderate Unreviewed
CVE-2024-7715 was published Aug 13, 2024
A command injection flaw was found in the "Host Init Config" template in the Foreman application... Moderate Unreviewed
CVE-2024-7700 was published Aug 12, 2024
A vulnerability was found in Edimax IC-6220DC and IC-5150W up to 3.06. It has been rated as... Moderate Unreviewed
CVE-2024-7616 was published Aug 12, 2024
Multiple OS command injection vulnerabilities affecting Vonets industrial wifi bridge relays... Critical Unreviewed
CVE-2024-37023 was published Aug 12, 2024
Zabbix allows to configure SMS notifications. AT command injection occurs on "Zabbix Server"... Low Unreviewed
CVE-2024-22122 was published Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... High Unreviewed
CVE-2024-21880 was published Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... High Unreviewed
CVE-2024-21879 was published Aug 12, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability... Critical Unreviewed
CVE-2024-21878 was published Aug 12, 2024
Firmware in KAON AR2140 routers prior to version 4.2.16 is vulnerable to a shell command... High Unreviewed
CVE-2024-3659 was published Aug 8, 2024
An issue in Koha ILS 23.05 and before allows a remote attacker to execute arbitrary code via a... Critical Unreviewed
CVE-2024-28739 was published Aug 6, 2024
CasaOS Command Injection vulnerability High
CVE-2023-37469 was published for github.com/IceWhaleTech/CasaOS (Go) Aug 5, 2024
Improper filering of special characters result in a command ('command injection') vulnerability... Critical Unreviewed
CVE-2024-7397 was published Aug 5, 2024
A vulnerability, which was classified as critical, has been found in TOTOLINK CP900 6.3c.566.... Moderate Unreviewed
CVE-2024-7464 was published Aug 5, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in Vivotek... Moderate Unreviewed
CVE-2024-7443 was published Aug 3, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has... Moderate Unreviewed
CVE-2024-7440 was published Aug 3, 2024
ProTip! Advisories are also available from the GraphQL API