Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

21,229 advisories

Loading
An issue in GestioIP v3.5.7 allows a remote attacker to execute arbitrary code via the file... Critical Unreviewed
CVE-2024-48760 was published Jan 15, 2025
Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an... Critical Unreviewed
CVE-2024-48856 was published Jan 14, 2025
Windows OLE Remote Code Execution Vulnerability Critical Unreviewed
CVE-2025-21298 was published Jan 14, 2025
Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability Critical Unreviewed
CVE-2025-21307 was published Jan 14, 2025
Windows NTLM V1 Elevation of Privilege Vulnerability Critical Unreviewed
CVE-2025-21311 was published Jan 14, 2025
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... Critical Unreviewed
CVE-2024-13160 was published Jan 14, 2025
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... Critical Unreviewed
CVE-2024-13159 was published Jan 14, 2025
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... Critical Unreviewed
CVE-2024-13161 was published Jan 14, 2025
Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6... Critical Unreviewed
CVE-2024-10811 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39763 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39762 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39764 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of... Critical Unreviewed
CVE-2024-39781 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality... Critical Unreviewed
CVE-2024-39760 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality... Critical Unreviewed
CVE-2024-39761 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39765 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of... Critical Unreviewed
CVE-2024-39783 was published Jan 14, 2025
Multiple directory traversal vulnerabilities exist in the nas.cgi add_dir() functionality of... Critical Unreviewed
CVE-2024-39786 was published Jan 14, 2025
Multiple directory traversal vulnerabilities exist in the nas.cgi add_dir() functionality of... Critical Unreviewed
CVE-2024-39787 was published Jan 14, 2025
A stack-based buffer overflow vulnerability exists in the wireless.cgi AddMac() functionality of... Critical Unreviewed
CVE-2024-39757 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of... Critical Unreviewed
CVE-2024-39782 was published Jan 14, 2025
A buffer overflow vulnerability exists in the adm.cgi set_sys_adm() functionality of Wavlink... Critical Unreviewed
CVE-2024-39774 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the qos.cgi qos_settings() functionality of... Critical Unreviewed
CVE-2024-39803 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of... Critical Unreviewed
CVE-2024-39768 was published Jan 14, 2025
Multiple buffer overflow vulnerabilities exist in the internet.cgi set_qos() functionality of... Critical Unreviewed
CVE-2024-39769 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database