GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,360
Composer 4,933
Erlang 39
GitHub Actions 38
Go 2,595
Maven 6,047
npm 4,247
NuGet 754
pip 4,013
Pub 12
RubyGems 953
Rust 1,048
Swift 45

Unreviewed advisories

All unreviewed 274,598

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,628 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

AMTT Hotel Broadband Operation System (HiBOS) contains an unauthenticated command injection... Critical Unreviewed

CVE-2016-15048 was published Oct 22, 2025

Hikvision CSMP (Comprehensive Security Management Platform) iSecure Center through 2024-08-01... High Unreviewed

CVE-2024-58274 was published Oct 22, 2025

A post-authentication command injection vulnerability in Zyxel ATP series firmware versions from... High Unreviewed

CVE-2025-8078 was published Oct 21, 2025

An arbitrary OS command may be executed on the product by the user who can log in to the web... High Unreviewed

CVE-2025-6541 was published Oct 21, 2025

An arbitrary OS command may be executed on the product by a remote unauthenticated attacker. Critical Unreviewed

CVE-2025-6542 was published Oct 21, 2025

A command injection vulnerability may be exploited after the admin's authentication on the web... Critical Unreviewed

CVE-2025-7850 was published Oct 21, 2025

GeoVision embedded IP devices, confirmed on GV-BX1500 and GV-MFD1501, contain a remote command... Critical Unreviewed

CVE-2018-25118 was published Oct 21, 2025

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2025-47901 was published Oct 20, 2025

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2025-47900 was published Oct 20, 2025

The iSherlock developed by HGiga has an OS Command Injection vulnerability, allowing... Critical Unreviewed

CVE-2025-11900 was published Oct 17, 2025

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an OS command injection... Critical Unreviewed

CVE-2025-34513 was published Oct 16, 2025

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain authenticated OS command injection... High Unreviewed

CVE-2025-34514 was published Oct 16, 2025

When a user attempts to initialize the rSeries FIPS module using a password with special shell... Moderate Unreviewed

CVE-2025-60013 was published Oct 15, 2025

When running in Appliance mode, a highly privileged authenticated attacker with access to SCP and... High Unreviewed

CVE-2025-53868 was published Oct 15, 2025

Ruijie RG-UAC Application Management Gateway contains a command injection vulnerability via the ... Critical Unreviewed

CVE-2023-7304 was published Oct 15, 2025

BYTEVALUE Intelligent Flow Control Router contains a command injection vulnerability via the ... Critical Unreviewed

CVE-2023-7311 was published Oct 15, 2025

An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2024-48891 was published Oct 14, 2025

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')... High Unreviewed

CVE-2025-5946 was published Oct 14, 2025

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12... High Unreviewed

CVE-2025-10242 was published Oct 14, 2025

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12... High Unreviewed

CVE-2025-10243 was published Oct 14, 2025

OS command injection in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12... High Unreviewed

CVE-2025-10985 was published Oct 14, 2025

Two improper neutralization of special elements used in an OS command ('OS Command Injection')... High Unreviewed

CVE-2025-47856 was published Oct 14, 2025

An OS Command Injection vulnerability affecting Station Launcher App in 3DEXPERIENCE platform... Critical Unreviewed

CVE-2025-9976 was published Oct 13, 2025

EMCLI contains a high severity vulnerability where improper neutralization of special elements... High Unreviewed

CVE-2025-0636 was published Oct 13, 2025

AVTECH devices that include the CloudSetup.cgi management endpoint are vulnerable to... High Unreviewed

CVE-2016-15047 was published Oct 9, 2025

Previous1…146 Next

Previous 1 2 3 4 5 … 145 146 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,628 advisories