GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,063
Composer 4,318
Erlang 31
GitHub Actions 21
Go 2,074
Maven 5,249
npm 3,746
NuGet 674
pip 3,434
Pub 12
RubyGems 892
Rust 880
Swift 37

Unreviewed advisories

All unreviewed 241,104

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,841 advisories

Filter by severity

Sort by

Least recently updated

Improper neutralization of special elements used in an OS command in SYNO.Core.Network.PPPoE in... High Unreviewed

CVE-2021-29083 was published May 24, 2022

A improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2024-50566 was published Jan 14, 2025

An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in... High Unreviewed

CVE-2024-27778 was published Jan 14, 2025

An improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2023-37937 was published Jan 14, 2025

OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440... High Unreviewed

CVE-2025-20016 was published Jan 14, 2025

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by... High Unreviewed

CVE-2024-13129 was published Jan 4, 2025

IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to... High Unreviewed

CVE-2024-54181 was published Dec 30, 2024

The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command... High Unreviewed

CVE-2024-12856 was published Dec 27, 2024

A command injection is possible through the user interface, allowing arbitrary command execution... High Unreviewed

CVE-2020-13712 was published Dec 21, 2024

home 5G HR02, Wi-Fi STATION SH-52B, and Wi-Fi STATION SH-54C contain an OS command injection... High Unreviewed

CVE-2024-45721 was published Dec 23, 2024

home 5G HR02 and Wi-Fi STATION SH-54C contain an OS command injection vulnerability in the... High Unreviewed

CVE-2024-54082 was published Dec 23, 2024

Arista NG Firewall ExecManagerImpl Command Injection Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12829 was published Dec 20, 2024

An OS command injection (CWE-78) vulnerability in FortiWAN version 4.5.7 and below Command Line... High Unreviewed

CVE-2021-26115 was published Dec 19, 2024

On Reolink RLC-410W, C1 Pro, C2 Pro, RLC-422W, and RLC-511W devices through 1.0.227, an... High Unreviewed

CVE-2019-11001 was published May 14, 2022

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-48889 was published Dec 18, 2024

An OS command injection vulnerability exists in the web interface configuration upload... High Unreviewed

CVE-2024-21786 was published Dec 18, 2024

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed

CVE-2024-53688 was published Dec 18, 2024

CyberPanel before 2.3.8 allows remote authenticated users to execute arbitrary commands via shell... High Unreviewed

CVE-2024-53376 was published Dec 16, 2024

An issue in TOTOLINK X5000R V.9.1.0u.6369_B20230113 allows a remote attacker to cause a denial of... High Unreviewed

CVE-2024-25468 was published Feb 17, 2024

A flaw was found in Radare2, which contains a command injection vulnerability caused by... High Unreviewed

CVE-2024-11858 was published Dec 15, 2024

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-52058 was published Dec 13, 2024

KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for... High Unreviewed

CVE-2023-34642 was published Jun 19, 2023

An unauthenticated attacker with network access to the affected device's web interface can... High Unreviewed

CVE-2024-28138 was published Dec 10, 2024

An authenticated Remote Code Execution (RCE) vulnerability exists in the AirWave CLI. Successful... High Unreviewed

CVE-2024-54008 was published Dec 10, 2024

IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on... High Unreviewed

CVE-2024-47115 was published Dec 7, 2024

Previous 1 2 3 4 5 … 73 74 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,841 advisories