GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,004
Composer 4,876
Erlang 37
GitHub Actions 36
Go 2,522
Maven 5,974
npm 4,176
NuGet 741
pip 3,965
Pub 12
RubyGems 947
Rust 1,028
Swift 39

Unreviewed advisories

All unreviewed 271,124

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,045 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Nagios XI < 2026R1 is vulnerable to an authenticated command injection vulnerability within the... High Unreviewed

CVE-2025-34227 was published Sep 25, 2025

Ericsson Indoor Connect 8855 contains a command injection vulnerability which if exploited can... High Unreviewed

CVE-2025-27262 was published Sep 25, 2025

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be... High Unreviewed

CVE-2025-9494 was published Sep 23, 2025

In LemonLDAP::NG before 2.16.7 and 2.17 through 2.21 before 2.21.3, OS command injection can... High Unreviewed

CVE-2025-59518 was published Sep 17, 2025

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed

CVE-2025-58116 was published Sep 17, 2025

The N-Reporter, N-Cloud, and N-Probe developed by N-Partner has an OS Command Injection... High Unreviewed

CVE-2025-10589 was published Sep 17, 2025

A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line... High Unreviewed

CVE-2025-37126 was published Sep 17, 2025

Zabbix Agent 2 smartctl plugin does not properly sanitize smart.disk.get parameters, allowing an... High Unreviewed

CVE-2025-27234 was published Sep 12, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) an Improper... High Unreviewed

CVE-2025-43884 was published Sep 10, 2025

Dell PowerProtect Data Manager, version(s) 19.19 and 19.20, Hyper-V contain(s) an Improper... High Unreviewed

CVE-2025-43885 was published Sep 10, 2025

OS Command injection vulnerability in function OperateSSH in 1panel 2.0.8 allowing attackers to... High Unreviewed

CVE-2025-56413 was published Sep 10, 2025

The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to run code on the... High Unreviewed

CVE-2025-23344 was published Sep 9, 2025

OS Command ('OS Command Injection') vulnerability in Calix GigaCenter ONT (Quantenna SoC modules)... High Unreviewed

CVE-2025-54084 was published Sep 9, 2025

A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on... High Unreviewed

CVE-2024-7517 was published Sep 9, 2025

Figma Desktop for Windows version 125.6.5 contains a command injection vulnerability in the local... High Unreviewed

CVE-2025-56803 was published Sep 8, 2025

Vacron Camera ping Command Injection Remote Code Execution Vulnerability. This vulnerability... High Unreviewed

CVE-2025-8613 was published Sep 2, 2025

The authenticated remote command execution (RCE) vulnerability exists in the Parental Control... High Unreviewed

CVE-2025-9377 was published Aug 29, 2025

A command injection vulnerability has been reported to affect QuRouter 2.5.1. If a remote... High Unreviewed

CVE-2025-29887 was published Aug 29, 2025

Multiple products provided by iND Co.,Ltd contain an OS command injection vulnerability. If... High Unreviewed

CVE-2025-53508 was published Aug 29, 2025

Three OS command injection vulnerabilities exist in the web interface I/O configuration... High Unreviewed

CVE-2024-28027 was published Aug 26, 2025

Three OS command injection vulnerabilities exist in the web interface I/O configuration... High Unreviewed

CVE-2024-28025 was published Aug 26, 2025

Three OS command injection vulnerabilities exist in the web interface I/O configuration... High Unreviewed

CVE-2024-28026 was published Aug 26, 2025

The StrongDM Windows service incorrectly handled input validation. Authenticated attackers could... High Unreviewed

CVE-2025-6181 was published Aug 20, 2025

The StrongDM macOS client incorrectly processed JSON-formatted messages. Attackers could... High Unreviewed

CVE-2025-6183 was published Aug 20, 2025

NVIDIA WebDataset for all platforms contains a vulnerability where an attacker could execute... High Unreviewed

CVE-2025-23294 was published Aug 13, 2025

Previous1…82 Next

Previous 1 2 3 4 5 … 81 82 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,045 advisories