GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,215
Composer 4,344
Erlang 31
GitHub Actions 22
Go 2,112
Maven 5,287
npm 3,767
NuGet 680
pip 3,453
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,555

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

1,854 advisories

Filter by severity

Sort by

Least recently updated

The end-of-life Netgear FVS336Gv2 and FVS336Gv3 are affected by a command injection vulnerability... High Unreviewed

CVE-2024-23690 was published Feb 4, 2025

**UNSUPPORTED WHEN ASSIGNED** A post-authentication command injection vulnerability in the CGI... High Unreviewed

CVE-2024-40890 was published Feb 4, 2025

**UNSUPPORTED WHEN ASSIGNED** A post-authentication command injection vulnerability in the... High Unreviewed

CVE-2024-40891 was published Feb 4, 2025

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed

CVE-2025-20617 was published Jan 22, 2025

Linksys E8450 v1.2.00.360516 was discovered to contain a command injection vulnerability via the... High Unreviewed

CVE-2024-57542 was published Jan 21, 2025

The airPASS from NetVision Information has an OS Command Injection vulnerability, allowing remote... High Unreviewed

CVE-2025-0457 was published Jan 16, 2025

A improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2024-50566 was published Jan 14, 2025

An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in... High Unreviewed

CVE-2024-27778 was published Jan 14, 2025

An improper neutralization of special elements used in an os command ('os command injection') in... High Unreviewed

CVE-2023-37937 was published Jan 14, 2025

OS command injection vulnerability exists in network storage servers STEALTHONE D220/D340/D440... High Unreviewed

CVE-2025-20016 was published Jan 14, 2025

A vulnerability was found in Roxy-WI up to 8.1.3. It has been declared as critical. Affected by... High Unreviewed

CVE-2024-13129 was published Jan 4, 2025

IBM WebSphere Automation 1.7.5 could allow a remote privileged user, who has authorized access to... High Unreviewed

CVE-2024-54181 was published Dec 30, 2024

The Four-Faith router models F3x24 and F3x36 are affected by an operating system (OS) command... High Unreviewed

CVE-2024-12856 was published Dec 27, 2024

home 5G HR02 and Wi-Fi STATION SH-54C contain an OS command injection vulnerability in the... High Unreviewed

CVE-2024-54082 was published Dec 23, 2024

home 5G HR02, Wi-Fi STATION SH-52B, and Wi-Fi STATION SH-54C contain an OS command injection... High Unreviewed

CVE-2024-45721 was published Dec 23, 2024

A command injection is possible through the user interface, allowing arbitrary command execution... High Unreviewed

CVE-2020-13712 was published Dec 21, 2024

Arista NG Firewall ExecManagerImpl Command Injection Remote Code Execution Vulnerability. This... High Unreviewed

CVE-2024-12829 was published Dec 20, 2024

An OS command injection (CWE-78) vulnerability in FortiWAN version 4.5.7 and below Command Line... High Unreviewed

CVE-2021-26115 was published Dec 19, 2024

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-48889 was published Dec 18, 2024

An OS command injection vulnerability exists in the web interface configuration upload... High Unreviewed

CVE-2024-21786 was published Dec 18, 2024

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue... High Unreviewed

CVE-2024-53688 was published Dec 18, 2024

CyberPanel before 2.3.8 allows remote authenticated users to execute arbitrary commands via shell... High Unreviewed

CVE-2024-53376 was published Dec 16, 2024

A flaw was found in Radare2, which contains a command injection vulnerability caused by... High Unreviewed

CVE-2024-11858 was published Dec 15, 2024

Dell RecoverPoint for Virtual Machines 6.0.x contains an OS Command injection vulnerability. A... High Unreviewed

CVE-2024-22461 was published Dec 13, 2024

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-52058 was published Dec 13, 2024

Previous 1 2 3 4 5 … 74 75 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

1,854 advisories