Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

333 advisories

Loading
A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1.... Moderate Unreviewed
CVE-2025-1676 was published Feb 25, 2025
An issue in sparkshop v.1.1.7 and before allows a remote attacker to execute arbitrary code via a... Moderate Unreviewed
CVE-2024-57685 was published Feb 25, 2025
An issue in Via Browser 6.1.0 allows a a remote attacker to execute arbitrary code via the mark... Moderate Unreviewed
CVE-2024-57608 was published Feb 25, 2025
A vulnerability, which was classified as critical, has been found in FiberHome AN5506-01A ONU... Moderate Unreviewed
CVE-2025-1616 was published Feb 24, 2025
A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by... Moderate Unreviewed
CVE-2025-1610 was published Feb 24, 2025
A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.... Moderate Unreviewed
CVE-2025-1608 was published Feb 24, 2025
A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.... Moderate Unreviewed
CVE-2025-1609 was published Feb 24, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the... Moderate Unreviewed
CVE-2025-25605 was published Feb 21, 2025
Totolink X5000R V9.1.0u.6369_B20230113 is vulnerable to command injection via the vif_disable... Moderate Unreviewed
CVE-2025-25604 was published Feb 21, 2025
A vulnerability has been found in BDCOM Behavior Management and Auditing System up to 20250210... Moderate Unreviewed
CVE-2025-1546 was published Feb 21, 2025
A vulnerability was found in Raisecom Multi-Service Intelligent Gateway up to 20250208. It has... Moderate Unreviewed
CVE-2025-1536 was published Feb 21, 2025
A vulnerability, which was classified as critical, has been found in MicroWorld eScan Antivirus 7... Moderate Unreviewed
CVE-2025-1370 was published Feb 17, 2025
A vulnerability was found in TOTOLINK X18 9.1.0cu.2024_B20220329. It has been rated as critical.... Moderate Unreviewed
CVE-2025-1339 was published Feb 16, 2025
A vulnerability classified as critical was found in olajowon Loggrove up to... Moderate Unreviewed
CVE-2025-1229 was published Feb 13, 2025
An issue in Team Amaze Amaze File Manager v.3.8.5 and fixed in v.3.10 allows a local attacker to... Moderate Unreviewed
CVE-2024-33469 was published Feb 12, 2025
files.photo.gallery command injection Moderate
CVE-2024-53615 was published for files.photo.gallery (npm) Jan 30, 2025
ECOVACS robot lawnmowers and vacuums are vulnerable to command injection via SetNetPin() over an... Moderate Unreviewed
CVE-2024-52325 was published Jan 23, 2025
Linksys E7350 1.1.00.032 was discovered to contain a command injection vulnerability via the... Moderate Unreviewed
CVE-2024-57222 was published Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed
CVE-2024-57214 was published Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed
CVE-2024-57212 was published Jan 10, 2025
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Moderate Unreviewed
CVE-2024-57213 was published Jan 10, 2025
Composio Command Execution vulnerability Moderate
CVE-2024-53526 was published for composio-claude (pip) Jan 8, 2025
A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1... Moderate Unreviewed
CVE-2024-12987 was published Dec 27, 2024
A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and... Moderate Unreviewed
CVE-2024-12986 was published Dec 27, 2024
A vulnerability classified as critical was found in Overtek OT-E801G OTE801G65.1.1.0. This... Moderate Unreviewed
CVE-2024-12985 was published Dec 27, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database