GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,999
Composer 4,876
Erlang 37
GitHub Actions 36
Go 2,522
Maven 5,974
npm 4,171
NuGet 741
pip 3,965
Pub 12
RubyGems 947
Rust 1,028
Swift 39

Unreviewed advisories

All unreviewed 271,077

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

466 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

OS Command injection vulnerability in D-Link C1 2020-02-21. The sub_47F028 function in jhttpd... Moderate Unreviewed

CVE-2025-57636 was published Sep 23, 2025

OS Command injection vulnerability in Tenda AC9 1.0 was discovered to contain a command injection... Moderate Unreviewed

CVE-2025-57639 was published Sep 23, 2025

HyperX NGENUITY software is potentially vulnerable to arbitrary code execution. HP is releasing... Moderate Unreviewed

CVE-2025-10568 was published Sep 19, 2025

IBM Lakehouse (watsonx.data 2.2) could allow an authenticated privileged user to execute... Moderate Unreviewed

CVE-2025-36143 was published Sep 18, 2025

A vulnerable feature in the command line interface of EdgeConnect SD-WAN could allow an... Moderate Unreviewed

CVE-2025-37129 was published Sep 17, 2025

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'... Moderate Unreviewed

CVE-2025-9997 was published Sep 10, 2025

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'... Moderate Unreviewed

CVE-2025-9996 was published Sep 9, 2025

An OS command injection vulnerability exists in PLDT WiFi Router's Prolink PGN6401V Firmware 8.1... Moderate Unreviewed

CVE-2025-56498 was published Sep 9, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection')... Moderate Unreviewed

CVE-2024-45325 was published Sep 9, 2025

A security vulnerability has been detected in D-Link DIR-852 1.00CN B09. Impacted is the function... Moderate Unreviewed

CVE-2025-9752 was published Sep 4, 2025

A security vulnerability has been detected in LB-LINK BL-X26 1.2.8. This affects an unknown... Moderate Unreviewed

CVE-2025-9580 was published Aug 28, 2025

A weakness has been identified in LB-LINK BL-X26 1.2.8. The impacted element is an unknown... Moderate Unreviewed

CVE-2025-9579 was published Aug 28, 2025

A vulnerability in the CLI of Cisco UCS Manager Software could allow an authenticated, local... Moderate Unreviewed

CVE-2025-20295 was published Aug 27, 2025

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker... Moderate Unreviewed

CVE-2025-20292 was published Aug 27, 2025

Multiple vulnerabilities in the CLI and web-based management interface of Cisco UCS Manager... Moderate Unreviewed

CVE-2025-20294 was published Aug 27, 2025

The Calamaris log exporter CGI (/cgi-bin/logs.cgi/calamaris.dat) in IPFire 2.29 does not properly... Moderate Unreviewed

CVE-2025-50974 was published Aug 26, 2025

A vulnerability was identified in Ruijie WS7204-A 2017.06.15. Affected by this vulnerability is... Moderate Unreviewed

CVE-2025-9424 was published Aug 26, 2025

A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file ... Moderate Unreviewed

CVE-2025-9387 was published Aug 24, 2025

A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of... Moderate Unreviewed

CVE-2025-9176 was published Aug 20, 2025

A vulnerability was determined in neurobin shc up to 4.0.3. This vulnerability affects the... Moderate Unreviewed

CVE-2025-9174 was published Aug 20, 2025

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain multiple OS command injection... Moderate Unreviewed

CVE-2025-55589 was published Aug 18, 2025

A vulnerability in the CLI of Cisco Secure Firewall Management Center (FMC) Software and Cisco... Moderate Unreviewed

CVE-2025-20220 was published Aug 14, 2025

The /goform/formJsonAjaxReq POST endpoint of Shenzhen Tuoshi NR500-EA RG500UEAABxCOMSLICv3.4.2731... Moderate Unreviewed

CVE-2025-43989 was published Aug 13, 2025

A improper neutralization of special elements used in an os command ('os command injection')... Moderate Unreviewed

CVE-2025-47857 was published Aug 12, 2025

An improper neutralization of special elements used in an OS command ('OS Command Injection')... Moderate Unreviewed

CVE-2025-27759 was published Aug 12, 2025

Previous1…19 Next

Previous 1 2 3 4 5 … 18 19 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

466 advisories