GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,373
Erlang
33
GitHub Actions
22
Go
2,135
Maven
5,000+
npm
3,797
NuGet
687
pip
3,478
Pub
12
RubyGems
896
Rust
897
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
295 advisories
Filter by severity
A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU...
Moderate
Unreviewed
CVE-2025-1616
was published
Feb 24, 2025
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by...
Moderate
Unreviewed
CVE-2025-1610
was published
Feb 24, 2025
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical....
Moderate
Unreviewed
CVE-2025-1609
was published
Feb 24, 2025
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2....
Moderate
Unreviewed
CVE-2025-1608
was published
Feb 24, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the...
Moderate
Unreviewed
CVE-2025-25605
was published
Feb 21, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable...
Moderate
Unreviewed
CVE-2025-25604
was published
Feb 21, 2025
A vulnerability has been found in BDCOM Behavior Management and Auditing System up to 20250210...
Moderate
Unreviewed
CVE-2025-1546
was published
Feb 21, 2025
A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has...
Moderate
Unreviewed
CVE-2025-1536
was published
Feb 21, 2025
A vulnerability, which was classified as critical, has been found in MicroWorld eScan Antivirus 7...
Moderate
Unreviewed
CVE-2025-1370
was published
Feb 17, 2025
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been rated as critical....
Moderate
Unreviewed
CVE-2025-1339
was published
Feb 16, 2025
A vulnerability classified as critical was found in olajowon Loggrove up to...
Moderate
Unreviewed
CVE-2025-1229
was published
Feb 13, 2025
An issue in Team Amaze Amaze File Manager v.3.8.5 and fixed in v.3.10 allows a local attacker to...
Moderate
Unreviewed
CVE-2024-33469
was published
Feb 12, 2025
ECOVACS robot lawnmowers and vacuums are vulnerable to command injection via SetNetPin() over an...
Moderate
Unreviewed
CVE-2024-52325
was published
Jan 23, 2025
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the...
Moderate
Unreviewed
CVE-2024-57222
was published
Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability...
Moderate
Unreviewed
CVE-2024-57214
was published
Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability...
Moderate
Unreviewed
CVE-2024-57213
was published
Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability...
Moderate
Unreviewed
CVE-2024-57212
was published
Jan 10, 2025
A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1...
Moderate
Unreviewed
CVE-2024-12987
was published
Dec 27, 2024
A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and...
Moderate
Unreviewed
CVE-2024-12986
was published
Dec 27, 2024
A vulnerability classified as critical was found in Overtek OT-E801G OTE801G65.1.1.0. This...
Moderate
Unreviewed
CVE-2024-12985
was published
Dec 27, 2024
A command injection vulnerability has been reported to affect several QNAP operating system...
Moderate
Unreviewed
CVE-2023-23356
was published
Dec 19, 2024
An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while...
Moderate
Unreviewed
CVE-2024-56087
was published
Dec 16, 2024
An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while...
Moderate
Unreviewed
CVE-2024-56085
was published
Dec 16, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has...
Moderate
Unreviewed
CVE-2024-11652
was published
Dec 11, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has...
Moderate
Unreviewed
CVE-2024-11651
was published
Dec 11, 2024
ProTip!
Advisories are also available from the
GraphQL API