GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,369
Composer 4,373
Erlang 33
GitHub Actions 22
Go 2,135
Maven 5,313
npm 3,797
NuGet 687
pip 3,478
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,479

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,868 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325... High Unreviewed

CVE-2019-1652 was published May 13, 2022

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed

CVE-2025-26856 was published Feb 20, 2025

An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the public_type... High Unreviewed

CVE-2025-25895 was published Feb 19, 2025

An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the samba_wg... High Unreviewed

CVE-2025-25894 was published Feb 19, 2025

An OS command injection vulnerability was discovered in D-Link DSL-3782 v1.01 via the inIP,... High Unreviewed

CVE-2025-25893 was published Feb 19, 2025

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0... High Unreviewed

CVE-2024-55904 was published Feb 14, 2025

This vulnerability exists in ESDS Emagic Data Center Management Suit due to lack of input... High Unreviewed

CVE-2023-37569 was published Aug 8, 2023

A vulnerability in the fosexec command of Brocade Fabric OS after Brocade Fabric OS v9.1.0 and,... High Unreviewed

CVE-2023-31425 was published Aug 1, 2023

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection... High Unreviewed

CVE-2023-2573 was published May 8, 2023

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by an command injection... High Unreviewed

CVE-2023-2574 was published May 8, 2023

A command injection vulnerability in the Palo Alto Networks PAN-OS OpenConfig plugin enables an... High Unreviewed

CVE-2025-0110 was published Feb 12, 2025

A flaw was found in the Emacs text editor. Improper handling of custom "man" URI schemes allows... High Unreviewed

CVE-2025-1244 was published Feb 12, 2025

A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially... High Unreviewed

CVE-2023-6321 was published May 15, 2024

An improper neutralization of special elements used in an OS command ('OS Command Injection')... High Unreviewed

CVE-2024-40584 was published Feb 11, 2025

An improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2024-50567 was published Feb 11, 2025

On Windows platforms, a "best fit" character encoding conversion of command line arguments to... High Unreviewed

CVE-2024-45720 was published Oct 9, 2024

OS Command Injection vulnerability in Revolution Pi version 2022-07-28-revpi-buster from KUNBUS... High Unreviewed

CVE-2024-8684 was published Feb 10, 2025

An issue in TPLINK TL-WPA 8630 TL-WPA8630(US)_V2_2.0.4 Build 20230427 allows a remote attacker to... High Unreviewed

CVE-2024-57357 was published Feb 8, 2025

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate... High Unreviewed

CVE-2020-0646 was published May 24, 2022

Multiple ZyXEL network-attached storage (NAS) devices running firmware version 5.21 contain a pre... High Unreviewed

CVE-2020-9054 was published May 24, 2022

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote... High Unreviewed

CVE-2020-4428 was published May 24, 2022

Command injection vulnerability exists in iControl REST and BIG-IP TMOS Shell (tmsh) save command... High Unreviewed

CVE-2025-20029 was published Feb 5, 2025

The goform/setUsbUnload endpoint of Tenda AC15 AC1900 version 15.03.05.19 allows remote attackers... High Unreviewed

CVE-2020-10987 was published May 24, 2022

The login_mgr.cgi script in D-Link DNS-320 through 2.05.B10 is vulnerable to remote command... High Unreviewed

CVE-2019-16057 was published May 24, 2022

Nagios XI before 5.6.6 allows remote command execution as root. The exploit requires access to... High Unreviewed

CVE-2019-15949 was published May 24, 2022

Previous 1 2 3 4 5 … 74 75 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,868 advisories