GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,413

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,976 advisories

Filter by severity

Sort by

Least recently updated

A vulnerability classified as critical was found in Tenda AC1206 up to 15.03.06.23. This... Moderate Unreviewed

CVE-2024-9793 was published Oct 10, 2024

Mware NSX contains a command injection vulnerability. A malicious actor with access to the NSX... Moderate Unreviewed

CVE-2024-38817 was published Oct 9, 2024

In Progress Telerik Reporting versions prior to 2024 Q3 (2024.3.924), a command injection attack... High Unreviewed

CVE-2024-7840 was published Oct 9, 2024

In linkturbonative service, there is a possible command injection due to improper input... Moderate Unreviewed

CVE-2024-39436 was published Oct 9, 2024

In linkturbonative service, there is a possible command injection due to improper input... Moderate Unreviewed

CVE-2024-39437 was published Oct 9, 2024

In linkturbonative service, there is a possible command injection due to improper input... Moderate Unreviewed

CVE-2024-39438 was published Oct 9, 2024

Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability High Unreviewed

CVE-2024-43591 was published Oct 8, 2024

Visual Studio Code for Linux Remote Code Execution Vulnerability High Unreviewed

CVE-2024-43601 was published Oct 8, 2024

An OS command injection vulnerability in the admin web console of Ivanti CSA before version 5.0.2... High Unreviewed

CVE-2024-9380 was published Oct 8, 2024

A vulnerability has been identified in Siemens SINEC Security Monitor (All versions < V4.9.0).... Critical Unreviewed

CVE-2024-47562 was published Oct 8, 2024

A vulnerability in the restricted shell of Cisco Expressway Series could allow an authenticated,... Moderate Unreviewed

CVE-2024-20492 was published Oct 2, 2024

A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco... Moderate Unreviewed

CVE-2024-20365 was published Oct 2, 2024

A vulnerability in the REST API and web UI of Cisco Nexus Dashboard Fabric Controller (NDFC)... Critical Unreviewed

CVE-2024-20432 was published Oct 2, 2024

Scriptcase 9.10.023 and before is vulnerable to Remote Code Execution (RCE) via the nm_unzip... High Unreviewed

CVE-2024-46084 was published Oct 1, 2024

PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to... Moderate Unreviewed

CVE-2024-44610 was published Oct 1, 2024

Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz (legacy) Visual... High Unreviewed

CVE-2024-9145 was published Oct 1, 2024

A Command injection vulnerability in requestLetsEncryptSsl in NginxProxyManager 2.11.3 allows an... Critical Unreviewed

CVE-2024-46256 was published Sep 27, 2024

Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an... High Unreviewed

CVE-2024-39577 was published Sep 26, 2024

Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information... Moderate Unreviewed

CVE-2024-45989 was published Sep 26, 2024

An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows... Moderate Unreviewed

CVE-2024-8405 was published Sep 26, 2024

In Progress Telerik UI for WinForms versions prior to 2024 Q3 (2024.3.924), a command injection... High Unreviewed

CVE-2024-7679 was published Sep 25, 2024

In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack... High Unreviewed

CVE-2024-7575 was published Sep 25, 2024

Command injection vulnerabilities in the underlying CLI service could lead to unauthenticated... Critical Unreviewed

CVE-2024-42505 was published Sep 25, 2024

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE UTILITY sub-menu can allow a... Critical Unreviewed

CVE-2024-43693 was published Sep 25, 2024

A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP sub-menu can allow a... Critical Unreviewed

CVE-2024-45066 was published Sep 25, 2024

Previous 1 2 3 4 5 … 79 80 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,976 advisories