GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,368 advisories
Filter by severity
An issue in Razer Synapse 3 v.3.9.131.20813 and Synapse 3 App v.20240213 allows a local attacker...
High
Unreviewed
CVE-2024-29404
was published
Dec 3, 2024
Command Injection vulnerability in NEC Corporation UNIVERGE IX from Ver9.2 to Ver10.10.21, for...
High
Unreviewed
CVE-2024-11013
was published
Nov 29, 2024
An issue in alist-tvbox v1.7.1 allows a remote attacker to execute arbitrary code via the /atv...
Moderate
Unreviewed
CVE-2024-48747
was published
Nov 26, 2024
TP-Link TL-IPC42C V4.0_20211227_1.0.16 is vulnerable to command injection due to the lack of...
Unknown
Unreviewed
CVE-2024-48288
was published
Nov 26, 2024
Arbitrary commands execution on the server by exploiting a command injection vulnerability in the...
Moderate
Unreviewed
CVE-2024-11320
was published
Nov 26, 2024
VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor...
High
Unreviewed
CVE-2024-38831
was published
Nov 26, 2024
TOTOLINK EX200 v4.0.3c.7646_B20201211 was found to contain a command insertion vulnerability in...
Moderate
Unreviewed
CVE-2024-53333
was published
Nov 26, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and...
Moderate
Unreviewed
CVE-2024-11659
was published
Nov 25, 2024
A vulnerability has been found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118 and...
Moderate
Unreviewed
CVE-2024-11658
was published
Nov 25, 2024
A vulnerability, which was classified as critical, has been found in EnGenius ENH1350EXT, ENS500...
Moderate
Unreviewed
CVE-2024-11656
was published
Nov 25, 2024
A vulnerability, which was classified as critical, was found in EnGenius ENH1350EXT, ENS500-AC...
Moderate
Unreviewed
CVE-2024-11657
was published
Nov 25, 2024
A vulnerability classified as critical was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT...
Moderate
Unreviewed
CVE-2024-11655
was published
Nov 25, 2024
A vulnerability classified as critical has been found in EnGenius ENH1350EXT, ENS500-AC and...
Moderate
Unreviewed
CVE-2024-11654
was published
Nov 25, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has...
Moderate
Unreviewed
CVE-2024-11653
was published
Nov 25, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-11665
was published
Nov 25, 2024
virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual...
High
Unreviewed
CVE-2024-53899
was published
Nov 24, 2024
An LDAP injection vulnerability in the login page of Gladinet CentreStack v13.12.9934.54690...
Critical
Unreviewed
CVE-2024-37782
was published
Nov 22, 2024
An OS command injection vulnerability has been reported to affect several product versions. If...
High
Unreviewed
CVE-2024-48861
was published
Nov 22, 2024
An OS command injection vulnerability has been reported to affect several product versions. If...
Critical
Unreviewed
CVE-2024-48860
was published
Nov 22, 2024
An OS command injection vulnerability has been reported to affect Notes Station 3. If exploited,...
High
Unreviewed
CVE-2024-38644
was published
Nov 22, 2024
Possible Command Injection
in iManager GET parameter has been discovered in
OpenText™ iManager...
High
Unreviewed
CVE-2023-24467
was published
Nov 22, 2024
Possible Elevation of Privilege Vulnerability
in iManager has been discovered in
OpenText™...
High
Unreviewed
CVE-2021-38116
was published
Nov 22, 2024
D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm function...
Critical
Unreviewed
CVE-2024-51151
was published
Nov 22, 2024
Linksys E3000 1.0.06.002_US is vulnerable to command injection via the diag_ping_start function.
High
Unreviewed
CVE-2024-48286
was published
Nov 21, 2024
An issue in Kasda LinkSmart Router KW5515 v1.7 and before allows an authenticated remote attacker...
Critical
Unreviewed
CVE-2024-33439
was published
Nov 20, 2024
ProTip!
Advisories are also available from the
GraphQL API