Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,412
Erlang
28
GitHub Actions
16
Go
1,650
Maven
4,914
npm
3,437
NuGet
594
pip
2,745
Pub
10
RubyGems
822
Rust
760
Swift
34
Unreviewed advisories
All unreviewed
5,000+

2,760 advisories

A vulnerability, which was classified as critical, has been found in MailCleaner up to 2023.03.14... Critical Unreviewed
CVE-2024-3191 was published Apr 29, 2024
A vulnerability has been found in MailCleaner up to 2023.03.14 and classified as critical.... High Unreviewed
CVE-2024-3193 was published Apr 29, 2024
A vulnerability was found in MailCleaner up to 2023.03.14. It has been declared as critical. This... Moderate Unreviewed
CVE-2024-3196 was published Apr 29, 2024
N-Reporter and N-Cloud, products of the N-Partner, have an OS Command Injection vulnerability.... High Unreviewed
CVE-2024-4301 was published Apr 29, 2024
The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherock,... High Unreviewed
CVE-2024-4299 was published Apr 29, 2024
The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, AuditSherlock... High Unreviewed
CVE-2024-4298 was published Apr 29, 2024
A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240419... Moderate Unreviewed
CVE-2024-4255 was published Apr 27, 2024
An OS command injection vulnerability has been reported to affect several QNAP operating system... High Unreviewed
CVE-2024-27124 was published Apr 26, 2024
Eclipse Target Management: Terminal and Remote System Explorer (RSE) version <= 4.5.400 has a... Critical Unreviewed
CVE-2024-0740 was published Apr 26, 2024
Heketi Arbitrary Code Execution High
CVE-2017-15103 was published for github.com/heketi/heketi (Go) Apr 24, 2024
A vulnerability in the CLI of the Cisco Integrated Management Controller (IMC) could allow an... High Unreviewed
CVE-2024-20295 was published Apr 24, 2024
A vulnerability in the web-based management interface of Cisco Integrated Management Controller ... High Unreviewed
CVE-2024-20356 was published Apr 24, 2024
A vulnerability in the Cisco Adaptive Security Appliance (ASA) restore functionality that is... Moderate Unreviewed
CVE-2024-20358 was published Apr 24, 2024
Renovate vulnerable to arbitrary command injection via helmv3 manager and registryAliases Moderate
GHSA-rqgv-292v-5qgr was published for renovate (npm) Apr 23, 2024
meyfa
Arbitrary Code Execution in Gitea High
CVE-2020-14144 was published for code.gitea.io/gitea (Go) Apr 22, 2024
An OS command injection vulnerability exists in the web interface mac2name functionality of... Critical Unreviewed
CVE-2023-39367 was published Apr 17, 2024
A vulnerability has been found in Tenda W30E 1.0.1.25(633) and classified as critical. This... Moderate Unreviewed
CVE-2024-3880 was published Apr 16, 2024
A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an... High Unreviewed
CVE-2024-2659 was published Apr 15, 2024
A format string vulnerability was identified in SMM/SMM2 and FPC that could allow an... High Unreviewed
CVE-2023-4856 was published Apr 15, 2024
A command injection vulnerability was identified in SMM/SMM2 and FPC that could allow an... High Unreviewed
CVE-2023-4855 was published Apr 15, 2024
Command injection vulnerability in the operating system. Improper neutralisation of special... Critical Unreviewed
CVE-2024-3781 was published Apr 15, 2024
Certain ASUS WiFi routers models has an OS Command Injection vulnerability, allowing an... High Unreviewed
CVE-2024-1655 was published Apr 15, 2024
A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This... Moderate Unreviewed
CVE-2024-3739 was published Apr 13, 2024
A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical.... Moderate Unreviewed
CVE-2024-3721 was published Apr 13, 2024
tiagorlampert CHAOS vulnerable to command injections High
CVE-2024-30850 was published for github.com/tiagorlampert/CHAOS (Go) Apr 12, 2024
ProTip! Advisories are also available from the GraphQL API