GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,438
Composer 4,411
Erlang 33
GitHub Actions 22
Go 2,146
Maven 5,316
npm 3,808
NuGet 687
pip 3,481
Pub 12
RubyGems 897
Rust 899
Swift 38

Unreviewed advisories

All unreviewed 246,057

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

391 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU... Moderate Unreviewed

CVE-2025-1616 was published Feb 24, 2025

A vulnerability in the software upgrade process of Cisco Nexus 3000 Series Switches and Cisco... Moderate Unreviewed

CVE-2025-20161 was published Feb 26, 2025

A vulnerability has been found in BDCOM Behavior Management and Auditing System up to 20250210... Moderate Unreviewed

CVE-2025-1546 was published Feb 21, 2025

An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed

CVE-2023-50358 was published Feb 13, 2024

A improper neutralization of special elements used in an os command ('os command injection') in... Moderate Unreviewed

CVE-2024-50569 was published Feb 11, 2025

Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via... Moderate Unreviewed

CVE-2020-8816 was published May 24, 2022

Dell RecoverPoint for Virtual Machines 6.0.x contains a OS Command Injection vulnerability. An... Moderate Unreviewed

CVE-2024-48008 was published Dec 13, 2024

There is a command injection vulnerability in ZTE MF258 Pro product. Due to insufficient... Moderate Unreviewed

CVE-2024-22065 was published Oct 29, 2024

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... Moderate Unreviewed

CVE-2025-23237 was published Jan 22, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Moderate Unreviewed

CVE-2024-57023 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Moderate Unreviewed

CVE-2024-57024 was published Jan 15, 2025

TOTOLINK X5000R V9.1.0cu.2350_B20230313 was discovered to contain an OS command injection... Moderate Unreviewed

CVE-2024-57025 was published Jan 15, 2025

NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a... Moderate Unreviewed

CVE-2025-0356 was published Jan 15, 2025

An improper neutralization of special elements used in an os command ('os command injection') in... Moderate Unreviewed

CVE-2024-56497 was published Jan 14, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection')... Moderate Unreviewed

CVE-2024-40587 was published Jan 14, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection')... Moderate Unreviewed

CVE-2024-48890 was published Jan 14, 2025

A improper neutralization of special elements used in an os command ('os command injection') in... Moderate Unreviewed

CVE-2024-26012 was published Jan 14, 2025

An OS command injection vulnerability in Palo Alto Networks Expedition enables an authenticated... Moderate Unreviewed

CVE-2025-0107 was published Jan 11, 2025

Tiki Wiki CMS – CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic... Moderate Unreviewed

CVE-2024-47918 was published Dec 30, 2024

IBM Security Directory Integrator 7.2.0 through 7.2.0.13 and 10.0.0 through 10.0.3 could allow a... Moderate Unreviewed

CVE-2024-28767 was published Dec 20, 2024

An issue was discovered in hwclock.13-v2.27 allows attackers to gain escalated privlidges or... Moderate Unreviewed

CVE-2020-21583 was published Aug 22, 2023

A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS)... Moderate Unreviewed

CVE-2024-12686 was published Dec 18, 2024

A vulnerability was found in WeiYe-Jing datax-web 2.1.1. It has been classified as critical. This... Moderate Unreviewed

CVE-2024-12358 was published Dec 9, 2024

An issue in TOTOLINK-CX-A3002RU V1.0.4-B20171106.1512 and TOTOLINK-CX-N150RT V2.1.6-B20171121... Moderate Unreviewed

CVE-2024-51228 was published Nov 27, 2024

A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS... Moderate Unreviewed

CVE-2024-9474 was published Nov 18, 2024

Previous 1 2 3 4 5 … 15 16 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

391 advisories