Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,293
Erlang
31
GitHub Actions
21
Go
2,061
Maven
5,000+
npm
3,744
NuGet
668
pip
3,423
Pub
12
RubyGems
892
Rust
875
Swift
36
Unreviewed advisories
All unreviewed
5,000+

374 advisories

Loading
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41281 was published Feb 2, 2024
baserCMS OS command injection vulnerability in Installer Moderate
CVE-2023-51450 was published for baserproject/basercms (Composer) Feb 22, 2024
A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject... Moderate Unreviewed
CVE-2024-20328 was published Mar 1, 2024
A vulnerability in the web-based management interface of Cisco Small Business 100, 300, and 500... Moderate Unreviewed
CVE-2024-20335 was published Mar 6, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-34980 was published Mar 8, 2024
A vulnerability has been found in Tenda AC10U 15.03.06.49 and classified as critical. This... Moderate Unreviewed
CVE-2024-2707 was published Mar 20, 2024
** UNSUPPORTED WHEN ASSIGNED ** D-Link DIR-610 devices allow Remote Command Execution via the cmd... Moderate Unreviewed
CVE-2020-9377 was published May 24, 2022
** DISPUTED ** An issue was discovered in DD-WRT through 16214. The Diagnostic page allows remote... Moderate Unreviewed
CVE-2020-13976 was published May 24, 2022
** DISPUTED ** Monstra CMS 3.0.4 allows an attacker, who already has administrative access to... Moderate Unreviewed
CVE-2020-13978 was published May 24, 2022
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It has been classified as... Moderate Unreviewed
CVE-2024-2812 was published Mar 22, 2024
A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It has been classified as... Moderate Unreviewed
CVE-2024-2851 was published Mar 24, 2024
A vulnerability was found in Tenda AC10U 15.03.06.48/15.03.06.49. It has been rated as critical.... Moderate Unreviewed
CVE-2024-2853 was published Mar 24, 2024
A vulnerability classified as critical has been found in Tenda AC18 15.03.05.05. Affected is the... Moderate Unreviewed
CVE-2024-2854 was published Mar 24, 2024
Fluid vulnerable to OS Command Injection for Fluid Users with JuicefsRuntime Moderate
CVE-2023-51699 was published for github.com/fluid-cloudnative/fluid (Go) Mar 15, 2024
zhang-x-z
A vulnerability classified as critical has been found in Tenda AC7 15.03.06.44. Affected is the... Moderate Unreviewed
CVE-2024-2897 was published Mar 26, 2024
A vulnerability, which was classified as critical, has been found in Ruijie RG-EG350 up to... Moderate Unreviewed
CVE-2024-2910 was published Mar 26, 2024
TP-Link Omada ER605 Access Control Command Injection Remote Code Execution Vulnerability. This... Moderate Unreviewed
CVE-2024-1180 was published Apr 3, 2024
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an... Moderate Unreviewed
CVE-2019-1960 was published May 24, 2022
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an... Moderate Unreviewed
CVE-2019-1959 was published May 24, 2022
OS Command Injection in TripleData Reporting Engine in Tripleplay Platform releases prior to... Moderate Unreviewed
CVE-2023-25759 was published Apr 19, 2023
A command injection vulnerability exists in the administrative web portal in TP-Link Archer... Moderate Unreviewed
CVE-2023-31756 was published May 19, 2023
An attacker having physical access to WDM can plug USB device to gain access and execute unwanted... Moderate Unreviewed
CVE-2022-46361 was published Jul 6, 2023
A vulnerability was found in Byzro Smart S80 up to 20240328. It has been declared as critical.... Moderate Unreviewed
CVE-2024-3346 was published Apr 5, 2024
A vulnerability was found in Beijing Baichuo Smart S45F Multi-Service Secure Gateway Intelligent... Moderate Unreviewed
CVE-2023-5494 was published Oct 10, 2023
A vulnerability was found in Beijing Baichuo Smart S85F Management Platform up to 20231010 and... Moderate Unreviewed
CVE-2023-5683 was published Oct 21, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database