GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,776
Composer 5,036
Erlang 39
GitHub Actions 38
Go 2,680
Maven 6,124
npm 4,308
NuGet 760
pip 4,081
Pub 12
RubyGems 958
Rust 1,061
Swift 45

Unreviewed advisories

All unreviewed 278,313

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

498 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A weakness has been identified in D-Link DI-7001 MINI 24.04.18B1. Impacted is an unknown function... Moderate Unreviewed

CVE-2025-11407 was published Oct 7, 2025

A command injection vulnerability exists in the AOS-CX Operating System. Successful exploitation... Moderate Unreviewed

CVE-2025-37158 was published Nov 18, 2025

Local Agent DVR versions thru 6.6.1.0 are vulnerable to directory traversal that allows an... Moderate Unreviewed

CVE-2025-63408 was published Nov 18, 2025

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Moderate Unreviewed

CVE-2025-55055 was published Nov 17, 2025

MyScreenTools v2.2.1.0 contains a critical OS command injection vulnerability in the GIF... Moderate Unreviewed

CVE-2025-63916 was published Nov 17, 2025

A vulnerability in the REST API of Cisco Catalyst Center could allow an authenticated, remote... Moderate Unreviewed

CVE-2025-20349 was published Nov 13, 2025

Due to an OS Command Injection vulnerability in SAP Business Connector, an authenticated attacker... Moderate Unreviewed

CVE-2025-42892 was published Nov 11, 2025

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.... Moderate Unreviewed

CVE-2025-1608 was published Feb 24, 2025

A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.... Moderate Unreviewed

CVE-2025-1609 was published Feb 24, 2025

A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by... Moderate Unreviewed

CVE-2025-1610 was published Feb 24, 2025

A vulnerability in the VirusEvent feature of ClamAV could allow a local attacker to inject... Moderate Unreviewed

CVE-2024-20328 was published Mar 1, 2024

Several OS command injection vulnerabilities exist in the device firmware in the /var/salia/mqtt... Moderate Unreviewed

CVE-2025-27804 was published May 21, 2025

A vulnerability was detected in D-Link DAP-2695 2.00RC131. This affects the function... Moderate Unreviewed

CVE-2025-11665 was published Oct 13, 2025

A security vulnerability has been detected in D-Link DAP-2695 2.00RC13. The impacted element is... Moderate Unreviewed

CVE-2025-12296 was published Oct 27, 2025

A privilege escalation vulnerability in Palo Alto Networks PAN-OS software allows a PAN-OS... Moderate Unreviewed

CVE-2024-9474 was published Nov 18, 2024

A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS)... Moderate Unreviewed

CVE-2024-12686 was published Dec 18, 2024

Pi-hole Web v4.3.2 (aka AdminLTE) allows Remote Code Execution by privileged dashboard users via... Moderate Unreviewed

CVE-2020-8816 was published May 24, 2022

lib/ajaxHandlers/ajaxAddTemplate.php in rConfig through 3.94 allows remote attackers to execute... Moderate Unreviewed

CVE-2020-10221 was published May 24, 2022

Improper neutralization of special elements in the SMA100 management interface allows a remote... Moderate Unreviewed

CVE-2021-20035 was published May 24, 2022

** UNSUPPORTED WHEN ASSIGNED ** D-Link DIR-610 devices allow Remote Command Execution via the cmd... Moderate Unreviewed

CVE-2020-9377 was published May 24, 2022

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... Moderate Unreviewed

CVE-2024-20399 was published Jul 1, 2024

A vulnerability in the `start_app_server` function of parisneo/lollms-webui V12 (Strawberry)... Moderate Unreviewed

CVE-2024-10019 was published Mar 20, 2025

When a user attempts to initialize the rSeries FIPS module using a password with special shell... Moderate Unreviewed

CVE-2025-60013 was published Oct 15, 2025

A vulnerability classified as critical was found in AMTT Hotel Broadband Operation System 1.0.... Moderate Unreviewed

CVE-2025-2701 was published Mar 24, 2025

Multiple instances of an Improper Neutralization of Special Elements used in an OS Command ('OS... Moderate Unreviewed

CVE-2025-60006 was published Oct 9, 2025

Previous1…20 Next

Previous 1 2 3 4 5 … 19 20 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

498 advisories