Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,680
Maven
5,000+
npm
4,308
NuGet
760
pip
4,081
Pub
12
RubyGems
958
Rust
1,061
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,109 advisories

Loading
TRENDnet TEW-657BRM 1.00.1 has an authenticated remote OS command injection vulnerability in the... High Unreviewed
CVE-2025-65202 was published Nov 26, 2025
A command injection vulnerability has been identified in bwdpi. A remote, authenticated attacker... High Unreviewed
CVE-2025-59370 was published Nov 25, 2025
A Looker user with a Developer role could cause Looker to execute a malicious command, due to... High Unreviewed
CVE-2025-12742 was published Nov 25, 2025
An issue in Ilevia EVE X1 Server Firmware Version v4.7.18.0.eden and before Logic Version v6.00 -... High Unreviewed
CVE-2025-60738 was published Nov 20, 2025
D-Link Router DIR-868L A1 FW106KRb01.bin has an unauthenticated remote code execution... High Unreviewed
CVE-2025-63932 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23 are... High Unreviewed
CVE-2025-34334 was published Nov 19, 2025
AudioCodes Fax Server and Auto-Attendant IVR appliances versions up to and including 2.6.23... High Unreviewed
CVE-2025-34335 was published Nov 19, 2025
An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed
CVE-2025-58034 was published Nov 18, 2025
A post-authentication command injection vulnerability in the "priv" parameter of Zyxel DX3300-T0... High Unreviewed
CVE-2025-8693 was published Nov 18, 2025
Nagios Log Server versions prior to 2026R1.0.1 contain an authenticated command injection... High Unreviewed
CVE-2025-34322 was published Nov 17, 2025
IPCop versions up to and including 2.1.9 contain an authenticated remote code execution... High Unreviewed
CVE-2021-4466 was published Nov 15, 2025
Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed
CVE-2025-64444 was published Nov 14, 2025
evernote-mcp-server openBrowser Command Injection Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-12489 was published Nov 6, 2025
Advantech WebAccess/VPN versions prior to 1.1.5 contain a command injection vulnerability in... High Unreviewed
CVE-2025-34239 was published Nov 6, 2025
Dell CloudLink, versions prior to 8.2, contain a vulnerability where a privileged user with known... High Unreviewed
CVE-2025-30479 was published Nov 5, 2025
Dell CloudLink, versions prior to 8.2, contain a vulnerability where a privileged user with known... High Unreviewed
CVE-2025-45379 was published Nov 5, 2025
FutureNet MA and IP-K series provided by Century Systems Co., Ltd. contain an OS command... High Unreviewed
CVE-2025-54763 was published Oct 31, 2025
Nagios Network Analyzer versions prior to 2024R2.0.1 contain a vulnerability in the LDAP... High Unreviewed
CVE-2025-34280 was published Oct 31, 2025
Nagios XI versions prior to 5.7.3 contain a command injection vulnerability in the report PDF... High Unreviewed
CVE-2020-36867 was published Oct 31, 2025
Nagios XI versions prior to 5.4.13 contain a remote code execution vulnerability in the Component... High Unreviewed
CVE-2018-25122 was published Oct 31, 2025
Nagios XI versions prior to 2012R1.6 contain a shell command injection vulnerability in the Auto... High Unreviewed
CVE-2013-10073 was published Oct 31, 2025
Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-46423 was published Oct 30, 2025
Dell Unity, version(s) 5.5 and Prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-43940 was published Oct 30, 2025
Dell Unity, version(s) 5.5 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-46422 was published Oct 30, 2025
Dell Unity, version(s) 5.4 and prior, contain(s) an Improper Neutralization of Special Elements... High Unreviewed
CVE-2025-43939 was published Oct 30, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database