Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,444
Erlang
29
GitHub Actions
16
Go
1,668
Maven
4,928
npm
3,458
NuGet
595
pip
2,876
Pub
10
RubyGems
823
Rust
766
Swift
34
Unreviewed advisories
All unreviewed
5,000+

208 advisories

1Panel arbitrary file write vulnerability Moderate
CVE-2024-34352 was published for github.com/1Panel-dev/1Panel (Go) May 9, 2024
an5er
dcnnt-py is vulnerable to command injection via Notification Handler Moderate
CVE-2023-1000 was published for dcnnt (pip) Apr 27, 2024
A privilege escalation vulnerability exists in the /bin/login functionality of Peplink Smart... Moderate Unreviewed
CVE-2023-40146 was published Apr 17, 2024
A vulnerability classified as critical has been found in Tenda AC500 2.0.1.9(1307). Affected is... Moderate Unreviewed
CVE-2024-3908 was published Apr 17, 2024
gix-transport indirect code execution via malicious username Moderate
CVE-2024-32884 was published for gitoxide (Rust) Apr 15, 2024
EliahKagan
A vulnerability has been found in Tenda FH1205 2.0.0.7(775) and classified as critical. Affected... Moderate Unreviewed
CVE-2024-3009 was published Mar 28, 2024
A vulnerability has been found in Tenda FH1203 2.0.1.6 and classified as critical. This... Moderate Unreviewed
CVE-2024-2991 was published Mar 27, 2024
A vulnerability has been found in Tenda FH1202 1.2.0.14(408) and classified as critical. Affected... Moderate Unreviewed
CVE-2024-2982 was published Mar 27, 2024
1Panel is vulnerable to command injection Moderate
CVE-2024-2352 was published for github.com/1Panel-dev/1Panel (Go) Mar 10, 2024
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as... Moderate Unreviewed
CVE-2024-1781 was published Feb 23, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-47218 was published Feb 13, 2024
In Emerson Rosemount GC370XA, GC700XA, and GC1500XA products, an authenticated user with network... Moderate Unreviewed
CVE-2023-49716 was published Feb 9, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41283 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41282 was published Feb 2, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... Moderate Unreviewed
CVE-2023-41281 was published Feb 2, 2024
A vulnerability was found in TRENDnet TEW-815DAP 1.0.2.0. It has been classified as critical.... Moderate Unreviewed
CVE-2024-0919 was published Jan 26, 2024
A vulnerability was found in TRENDnet TEW-822DRE 1.03B02. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-0920 was published Jan 26, 2024
A vulnerability in the web-based management interface of the Cisco WAP371 Wireless-AC/N Dual... Moderate Unreviewed
CVE-2024-20287 was published Jan 17, 2024
An attacker with access to a Management Console user account with the editor role could escalate... Moderate Unreviewed
CVE-2024-0507 was published Jan 16, 2024
A vulnerability classified as critical was found in Totolink X2000R 1.0.0-B20221212.1452.... Moderate Unreviewed
CVE-2024-0579 was published Jan 16, 2024
A vulnerability was found in Totolink LR1200GB 9.1.0u.6619_B20230130. It has been rated as... Moderate Unreviewed
CVE-2024-0291 was published Jan 8, 2024
In Red Hat Advanced Cluster Security (RHACS), it was found that some security related HTTP... Moderate Unreviewed
CVE-2023-4958 was published Dec 12, 2023
SAP Solution Manager - version 720, allows an authorized attacker to execute certain deprecated... Moderate Unreviewed
CVE-2023-49587 was published Dec 12, 2023
An issue was discovered on Connectize AC21000 G6 641.139.1.1256 allows attackers to run arbitrary... Moderate Unreviewed
CVE-2023-24046 was published Dec 5, 2023
A vulnerability in a specific Cisco ISE CLI command could allow an authenticated, local attacker... Moderate Unreviewed
CVE-2023-20170 was published Nov 1, 2023
ProTip! Advisories are also available from the GraphQL API