GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,900
Erlang
29
GitHub Actions
16
Go
1,722
Maven
4,952
npm
3,481
NuGet
605
pip
3,047
Pub
10
RubyGems
832
Rust
778
Swift
34
Unreviewed advisories
All unreviewed
5,000+
2,865 advisories
Filter by severity
An OS command injection vulnerability exists in the MacOS Text-To-Speech class MacOSTTS of the...
High
Unreviewed
CVE-2024-1880
was published
Jun 6, 2024
AutoGPT, a component of significant-gravitas/autogpt, is vulnerable to an improper neutralization...
High
Unreviewed
CVE-2024-1881
was published
Jun 6, 2024
A vulnerability in the parisneo/lollms-webui version 9.3 allows attackers to bypass intended...
Critical
Unreviewed
CVE-2024-2359
was published
Jun 6, 2024
A remote code execution vulnerability exists in mintplex-labs/anything-llm due to improper...
Critical
Unreviewed
CVE-2024-3104
was published
Jun 6, 2024
A10 Thunder ADC CsrRequestView Command Injection Remote Code Execution Vulnerability. This...
High
Unreviewed
CVE-2024-30368
was published
Jun 6, 2024
SysAid - CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command...
Critical
Unreviewed
CVE-2024-36394
was published
Jun 6, 2024
Missing input validation and OS command integration of the input in the utnserver Pro, utnserver...
Unknown
Unreviewed
CVE-2024-5421
was published
Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED **
The command injection vulnerability in the “setCookie” parameter...
Critical
Unreviewed
CVE-2024-29973
was published
Jun 4, 2024
** UNSUPPORTED WHEN ASSIGNED **
The command injection vulnerability in the CGI program ...
Critical
Unreviewed
CVE-2024-29972
was published
Jun 4, 2024
A vulnerability was found in Huashi Private Cloud CDN Live Streaming Acceleration Server up to...
Moderate
Unreviewed
CVE-2024-5241
was published
May 23, 2024
Improper Neutralization of Special Elements used in an OS Command ('OS
Command Injection')...
Critical
Unreviewed
CVE-2023-3939
was published
May 21, 2024
ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability....
High
Unreviewed
CVE-2024-0401
was published
May 20, 2024
Passbolt Api Remote code execution
High
GHSA-cv5c-2qv5-w2m2
was published
for
passbolt/passbolt_api
(Composer)
May 20, 2024
A vulnerability in the ConfD CLI and the Cisco Crosswork Network Services Orchestrator CLI could...
High
Unreviewed
CVE-2024-20326
was published
May 16, 2024
Dreamweaver Desktop versions 21.3 and earlier are affected by an Improper Neutralization of...
Critical
Unreviewed
CVE-2024-30314
was published
May 16, 2024
A command injection vulnerability exists in the 'run_xtts_api_server' function of the parisneo...
High
Unreviewed
CVE-2024-3126
was published
May 16, 2024
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D-Link DAR-7000-40 V31R02B1413C and...
Moderate
Unreviewed
CVE-2024-4965
was published
May 16, 2024
fuel/core ImageMagick driver does not escape all shell arguments.
High
GHSA-26hp-cgjj-m2j3
was published
for
fuel/core
(Composer)
May 15, 2024
A command injection vulnerability exists in the IOCTL that manages OTA updates. A specially...
High
Unreviewed
CVE-2023-6321
was published
May 15, 2024
OS command injection vulnerabilities in GE HealthCare ultrasound devices
High
Unreviewed
CVE-2024-1628
was published
May 14, 2024
A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240506...
Moderate
Unreviewed
CVE-2024-4815
was published
May 14, 2024
A vulnerability classified as critical has been found in Ruijie RG-UAC up to 20240506. Affected...
Moderate
Unreviewed
CVE-2024-4813
was published
May 14, 2024
A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240506. Affected by...
Moderate
Unreviewed
CVE-2024-4814
was published
May 14, 2024
A vulnerability, which was classified as critical, was found in Ruijie RG-UAC up to 20240506....
Moderate
Unreviewed
CVE-2024-4816
was published
May 14, 2024
IBM Security Guardium 11.3, 11.4, 11.5, and 12.0 could allow a remote authenticated attacker to...
Critical
Unreviewed
CVE-2023-47709
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API