GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,273
Erlang
31
GitHub Actions
21
Go
2,055
Maven
5,000+
npm
3,739
NuGet
668
pip
3,417
Pub
12
RubyGems
891
Rust
872
Swift
36
Unreviewed advisories
All unreviewed
5,000+
2,368 advisories
Filter by severity
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-11665
was published
Nov 25, 2024
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME...
Critical
Unreviewed
CVE-2024-28729
was published
Nov 13, 2024
An OS command injection vulnerability has been reported to affect several product versions. If...
Critical
Unreviewed
CVE-2024-48860
was published
Nov 22, 2024
An OS command injection vulnerability has been reported to affect Notes Station 3. If exploited,...
High
Unreviewed
CVE-2024-38644
was published
Nov 22, 2024
An OS command injection vulnerability has been reported to affect several product versions. If...
High
Unreviewed
CVE-2024-48861
was published
Nov 22, 2024
D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm function...
Critical
Unreviewed
CVE-2024-51151
was published
Nov 22, 2024
Possible Command Injection
in iManager GET parameter has been discovered in
OpenText™ iManager...
High
Unreviewed
CVE-2023-24467
was published
Nov 22, 2024
Possible Elevation of Privilege Vulnerability
in iManager has been discovered in
OpenText™...
High
Unreviewed
CVE-2021-38116
was published
Nov 22, 2024
Linksys E3000 1.0.06.002_US is vulnerable to command injection via the diag_ping_start function.
High
Unreviewed
CVE-2024-48286
was published
Nov 21, 2024
Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component:...
Moderate
Unreviewed
CVE-2024-21117
was published
Apr 17, 2024
D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (RCE)...
High
Unreviewed
CVE-2024-52739
was published
Nov 20, 2024
Apache Spark UI vulnerable to Command Injection
High
CVE-2023-32007
was published
for
org.apache.spark:spark-parent_2.12
(Maven)
May 2, 2023
Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer
High
CVE-2024-52308
was published
for
github.com/cli/cli
(Go)
Nov 14, 2024
Improper Neutralization of Special Elements used in a Command ('Command Injection') in Weblate
High
CVE-2022-23915
was published
for
Weblate
(pip)
Mar 4, 2022
Tryton vulnerable to arbitrary command execution
High
CVE-2014-6633
was published
for
tryton
(pip)
May 14, 2022
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability...
High
Unreviewed
CVE-2024-45505
was published
Nov 18, 2024
CasaOS Command Injection vulnerability
Critical
CVE-2023-37469
was published
for
github.com/IceWhaleTech/CasaOS
(Go)
Aug 5, 2024
Sercomm Router Etisalat Model S3- AC2100 is affected by Incorrect Access Control via the...
High
Unreviewed
CVE-2021-27702
was published
Nov 13, 2024
Improper neutralization of special elements used in a command ('Command Injection') vulnerability...
Critical
Unreviewed
CVE-2024-10443
was published
Nov 15, 2024
Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-50852
was published
Nov 13, 2024
Tenda G3 v3.0 v15.11.0.20 was discovered to contain a command injection vulnerability via the...
High
Unreviewed
CVE-2024-50853
was published
Nov 13, 2024
PyTorch vulnerable to arbitrary code execution
Critical
CVE-2022-45907
was published
for
torch
(pip)
Nov 26, 2022
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All...
High
Unreviewed
CVE-2024-50572
was published
Nov 12, 2024
An issue in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME...
High
Unreviewed
CVE-2024-28726
was published
Nov 13, 2024
ProTip!
Advisories are also available from the
GraphQL API