Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,140
Maven
5,000+
npm
3,800
NuGet
687
pip
3,478
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

295 advisories

Loading
A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU... Moderate Unreviewed
CVE-2025-1616 was published Feb 24, 2025
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by... Moderate Unreviewed
CVE-2025-1610 was published Feb 24, 2025
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.... Moderate Unreviewed
CVE-2025-1609 was published Feb 24, 2025
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.... Moderate Unreviewed
CVE-2025-1608 was published Feb 24, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the... Moderate Unreviewed
CVE-2025-25605 was published Feb 21, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable... Moderate Unreviewed
CVE-2025-25604 was published Feb 21, 2025
A vulnerability has been found in BDCOM Behavior Management and Auditing System up to 20250210... Moderate Unreviewed
CVE-2025-1546 was published Feb 21, 2025
A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has... Moderate Unreviewed
CVE-2025-1536 was published Feb 21, 2025
A vulnerability, which was classified as critical, has been found in MicroWorld eScan Antivirus 7... Moderate Unreviewed
CVE-2025-1370 was published Feb 17, 2025
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been rated as critical.... Moderate Unreviewed
CVE-2025-1339 was published Feb 16, 2025
A vulnerability classified as critical was found in olajowon Loggrove up to... Moderate Unreviewed
CVE-2025-1229 was published Feb 13, 2025
An issue in Team Amaze Amaze File Manager v.3.8.5 and fixed in v.3.10 allows a local attacker to... Moderate Unreviewed
CVE-2024-33469 was published Feb 12, 2025
ECOVACS robot lawnmowers and vacuums are vulnerable to command injection via SetNetPin() over an... Moderate Unreviewed
CVE-2024-52325 was published Jan 23, 2025
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the... Moderate Unreviewed
CVE-2024-57222 was published Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed
CVE-2024-57214 was published Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed
CVE-2024-57213 was published Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed
CVE-2024-57212 was published Jan 10, 2025
A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1... Moderate Unreviewed
CVE-2024-12987 was published Dec 27, 2024
A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and... Moderate Unreviewed
CVE-2024-12986 was published Dec 27, 2024
A vulnerability classified as critical was found in Overtek OT-E801G OTE801G65.1.1.0. This... Moderate Unreviewed
CVE-2024-12985 was published Dec 27, 2024
A command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-23356 was published Dec 19, 2024
An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while... Moderate Unreviewed
CVE-2024-56087 was published Dec 16, 2024
An issue was discovered in Logpoint before 7.5.0. Authenticated users can inject payloads while... Moderate Unreviewed
CVE-2024-56085 was published Dec 16, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has... Moderate Unreviewed
CVE-2024-11652 was published Dec 11, 2024
A vulnerability was found in EnGenius ENH1350EXT, ENS500-AC and ENS620EXT up to 20241118. It has... Moderate Unreviewed
CVE-2024-11651 was published Dec 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database