GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,795

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,013 advisories

Filter by severity

Sort by

Least recently updated

A Command injection vulnerability in requestLetsEncryptSsl in NginxProxyManager 2.11.3 allows an... Critical Unreviewed

CVE-2024-46256 was published Sep 27, 2024

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an... High Unreviewed

CVE-2024-39577 was published Sep 26, 2024

Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information... Moderate Unreviewed

CVE-2024-45989 was published Sep 26, 2024

An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed

CVE-2024-8405 was published Sep 26, 2024

In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection... High Unreviewed

CVE-2024-7679 was published Sep 25, 2024

In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack... High Unreviewed

CVE-2024-7575 was published Sep 25, 2024

Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated... Critical Unreviewed

CVE-2024-42507 was published Sep 25, 2024

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a... Critical Unreviewed

CVE-2024-43693 was published Sep 25, 2024

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a... Critical Unreviewed

CVE-2024-45066 was published Sep 25, 2024

Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated... Critical Unreviewed

CVE-2024-42505 was published Sep 25, 2024

Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated... Critical Unreviewed

CVE-2024-42506 was published Sep 25, 2024

A condition exists in FlashArray and FlashBlade Purity whereby a malicious user could execute... Critical Unreviewed

CVE-2024-0005 was published Sep 23, 2024

Xiaomi Router AX9000 has a post-authorization command injection vulnerability. This vulnerability... Moderate Unreviewed

CVE-2024-45348 was published Sep 23, 2024

There is a command injection vulnerability that may allow an attacker to inject malicious input... High Unreviewed

CVE-2024-45682 was published Sep 17, 2024

A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi... High Unreviewed

CVE-2024-42025 was published Sep 13, 2024

Tenda FH451 v1.0.0.9 has a command injection vulnerability in the formexeCommand function i High Unreviewed

CVE-2024-46048 was published Sep 13, 2024

An issue has been discovered in GitLab EE affecting all versions starting from 16.11 prior to 17... High Unreviewed

CVE-2024-8640 was published Sep 12, 2024

CVE-2024-45824 IMPACT A remote code vulnerability exists in the affected products. The... Critical Unreviewed

CVE-2024-45824 was published Sep 12, 2024

RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the... High Unreviewed

CVE-2024-44574 was published Sep 11, 2024

RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the... High Unreviewed

CVE-2024-44572 was published Sep 11, 2024

RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a command injection vulnerability via the... High Unreviewed

CVE-2024-44577 was published Sep 11, 2024

RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the... High Unreviewed

CVE-2024-44570 was published Sep 11, 2024

COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers... Critical Unreviewed

CVE-2024-44466 was published Sep 11, 2024

Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed

CVE-2024-38228 was published Sep 10, 2024

Microsoft SharePoint Server Remote Code Execution Vulnerability High Unreviewed

CVE-2024-38227 was published Sep 10, 2024

Previous 1 2 3 4 5 6 7 … 80 81 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,013 advisories