Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,205
Erlang
31
GitHub Actions
19
Go
1,986
Maven
5,000+
npm
3,703
NuGet
661
pip
3,329
Pub
11
RubyGems
884
Rust
843
Swift
36
Unreviewed advisories
All unreviewed
5,000+

1,916 advisories

Loading
Zoraxy has an authenticated command injection in the Web SSH feature High
CVE-2024-52010 was published for github.com/tobychui/zoraxy (Go) Nov 12, 2024
n-thumann
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed
CVE-2024-45827 was published Nov 12, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11063 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11064 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11066 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11065 was published Nov 11, 2024
The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers... High Unreviewed
CVE-2024-11062 was published Nov 11, 2024
Wi-Fi Alliance wfa_dut (in Wi-Fi Test Suite) through 9.0.0 allows OS command injection via 802... High Unreviewed
CVE-2024-41992 was published Nov 11, 2024
Netgear XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 was discovered to contain a... High Unreviewed
CVE-2024-51021 was published Nov 5, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-51024 was published Nov 5, 2024
D-Link DIR_823G 1.0.2B05 was discovered to contain a command injection vulnerability via the... High Unreviewed
CVE-2024-51023 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52019 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52020 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52021 was published Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-52018 was published Nov 5, 2024
Netgear R8500 v1.0.2.160, XR300 v1.0.3.78, R7000P v1.3.3.154, and R6400 v2 1.0.4.128 were... High Unreviewed
CVE-2024-51010 was published Nov 5, 2024
Netgear XR300 v1.0.3.78 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-51008 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-51005 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-51009 was published Nov 5, 2024
Netgear R8500 v1.0.2.160 was discovered to contain a command injection vulnerability in the... High Unreviewed
CVE-2024-50993 was published Nov 5, 2024
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This... High Unreviewed
CVE-2024-45891 was published Nov 4, 2024
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This... High Unreviewed
CVE-2024-45893 was published Nov 4, 2024
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability This... High Unreviewed
CVE-2024-45890 was published Nov 4, 2024
In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and... High Unreviewed
CVE-2024-51253 was published Nov 4, 2024
In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and... High Unreviewed
CVE-2024-51251 was published Nov 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database