Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,055
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,605
NuGet
638
pip
3,208
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

2,182 advisories

Loading
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... High Unreviewed
CVE-2024-41320 was published Jul 22, 2024
TOTOLINK A6000R V1.0.1-B20201211.2000 was discovered to contain a command injection vulnerability... Critical Unreviewed
CVE-2024-41316 was published Jul 22, 2024
AX3000 Dual-Band Gigabit Wi-Fi 6 Router AX9 V22.03.01.46 and AX3000 Dual-Band Gigabit Wi-Fi 6... High Unreviewed
CVE-2024-39963 was published Jul 19, 2024
In streampark, the project module integrates Maven's compilation capabilities. The input... Moderate Unreviewed
CVE-2024-29737 was published Jul 17, 2024
In streampark, the project module integrates Maven's compilation capabilities. The input... Moderate Unreviewed
CVE-2023-52291 was published Jul 17, 2024
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the... Critical Unreviewed
CVE-2024-38492 was published Jul 15, 2024
StoneFly Storage Concentrator (SC and SCVM) before 8.0.4.26 allows remote authenticated users to... High Unreviewed
CVE-2024-30213 was published Jul 13, 2024
Sourcecodester Poultry Farm Management System v1.0 contains an Unauthenticated Remote Code... Critical Unreviewed
CVE-2024-40110 was published Jul 12, 2024
A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1).... High Unreviewed
CVE-2024-39569 was published Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1).... High Unreviewed
CVE-2024-39571 was published Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1).... High Unreviewed
CVE-2024-39568 was published Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.2 HF1).... High Unreviewed
CVE-2024-39567 was published Jul 9, 2024
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 HF1).... High Unreviewed
CVE-2024-39570 was published Jul 9, 2024
A local privilege escalation vlnerability in the WatchGuard Mobile VPN with SSL client on Windows... High Unreviewed
CVE-2024-4944 was published Jul 9, 2024
An issue was discovered in SeaCMS <=12.9 which allows remote attackers to execute arbitrary code... Critical Unreviewed
CVE-2024-39028 was published Jul 5, 2024
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions... High Unreviewed
CVE-2024-36983 was published Jul 1, 2024
Netwrix CoSoSys Endpoint Protector through 5.9.3 and CoSoSys Unify through 7.0.6 contain a remote... High Unreviewed
CVE-2024-36073 was published Jun 27, 2024
This Advisory describes an issue that impacts Arista Wireless Access Points. Any entity with the... High Unreviewed
CVE-2024-4578 was published Jun 27, 2024
TELSAT marKoni FM Transmitters are vulnerable to a command injection vulnerability through the... Unknown Unreviewed
CVE-2024-39373 was published Jun 27, 2024
In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Remote Code Execution... Critical Unreviewed
CVE-2024-4884 was published Jun 25, 2024
In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in... Critical Unreviewed
CVE-2024-4883 was published Jun 25, 2024
HashiCorp go-getter Vulnerable to Code Execution On Git Update Via Git Config Manipulation High
CVE-2024-6257 was published for github.com/hashicorp/go-getter (Go) Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... High Unreviewed
CVE-2024-4639 was published Jun 25, 2024
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable... High Unreviewed
CVE-2024-4638 was published Jun 25, 2024
WAVLINK WN551K1 found a command injection vulnerability through the IP parameter of /cgi-bin... Moderate Unreviewed
CVE-2024-38894 was published Jun 24, 2024
ProTip! Advisories are also available from the GraphQL API