Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

977 advisories

Loading
The script input feature of SpagoBI 3.5.1 allows arbitrary code execution. Critical Unreviewed
CVE-2024-54794 was published Jan 21, 2025
Tenda AC18 V15.03.05.19 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2024-57583 was published Jan 16, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39763 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39762 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39764 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of... Critical Unreviewed
CVE-2024-39781 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality... Critical Unreviewed
CVE-2024-39760 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality... Critical Unreviewed
CVE-2024-39761 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the internet.cgi set_add_routing()... Critical Unreviewed
CVE-2024-39765 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of... Critical Unreviewed
CVE-2024-39783 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the adm.cgi sch_reboot() functionality of... Critical Unreviewed
CVE-2024-39782 was published Jan 14, 2025
An os command injection vulnerability exists in the nas.cgi remove_dir() functionality of Wavlink... Critical Unreviewed
CVE-2024-39360 was published Jan 14, 2025
Multiple OS command injection vulnerabilities exist in the login.cgi set_sys_init() functionality... Critical Unreviewed
CVE-2024-39759 was published Jan 14, 2025
An os command injection vulnerability exists in the touchlist_sync.cgi touchlistsync()... Critical Unreviewed
CVE-2024-34166 was published Jan 14, 2025
An os command injection vulnerability exists in the firewall.cgi iptablesWebsFilterRun()... Critical Unreviewed
CVE-2024-39367 was published Jan 14, 2025
An os command injection vulnerability exists in the adm.cgi set_ledonoff() functionality of... Critical Unreviewed
CVE-2024-37186 was published Jan 14, 2025
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2024-57225 was published Jan 10, 2025
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2024-57223 was published Jan 10, 2025
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2024-57224 was published Jan 10, 2025
Tenda ac9 v1.0 firmware v15.03.05.19 is vulnerable to command injection in /goform/SetSambaCfg,... Critical Unreviewed
CVE-2025-22949 was published Jan 10, 2025
A vulnerability exits in driver SmSerl64.sys in Motorola SM56 Modem WDM Driver v6.12.23.0, which... Critical Unreviewed
CVE-2024-55414 was published Jan 7, 2025
There is a command injection vulnerability in Huawei terminal printer product. Successful... Critical Unreviewed
CVE-2022-32203 was published Dec 20, 2024
SeaCMS <=13.0 is vulnerable to command execution in phome.php via the function... Critical Unreviewed
CVE-2024-55461 was published Dec 19, 2024
A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support... Critical Unreviewed
CVE-2024-12356 was published Dec 17, 2024
In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an... Critical Unreviewed
CVE-2024-55956 was published Dec 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database