GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,966
Composer 5,074
Erlang 39
GitHub Actions 38
Go 2,737
Maven 6,146
npm 4,337
NuGet 764
pip 4,112
Pub 12
RubyGems 960
Rust 1,068
Swift 45

Unreviewed advisories

All unreviewed 279,874

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

918 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

NETSCOUT nGeniusPULSE 3.8 has a Command Injection Vulnerability. Critical Unreviewed

CVE-2023-40301 was published Dec 7, 2023

Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ... Critical Unreviewed

CVE-2023-49431 was published Dec 7, 2023

Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ... Critical Unreviewed

CVE-2023-49436 was published Dec 7, 2023

Tenda AX9 V22.03.01.46 is vulnerable to command injection. Critical Unreviewed

CVE-2023-49435 was published Dec 7, 2023

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ... Critical Unreviewed

CVE-2023-49437 was published Dec 7, 2023

Tenda AX12 V22.03.01.46 has been discovered to contain a command injection vulnerability in the ... Critical Unreviewed

CVE-2023-49428 was published Dec 7, 2023

In TOTOLINK X6000R_Firmware V9.4.0cu.852_B20230719, the shttpd file sub_415534 function obtains... Critical Unreviewed

CVE-2023-48801 was published Dec 2, 2023

D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerability via... Critical Unreviewed

CVE-2023-48842 was published Dec 1, 2023

An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote... Critical Unreviewed

CVE-2023-43454 was published Dec 1, 2023

An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote... Critical Unreviewed

CVE-2023-43455 was published Dec 1, 2023

An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a remote... Critical Unreviewed

CVE-2023-43453 was published Dec 1, 2023

An issue in Tneda AX1803 v.1.0.0.1 allows a remote attacker to execute arbitrary code via the... Critical Unreviewed

CVE-2023-49040 was published Nov 27, 2023

Qualitor through 8.20 allows remote attackers to execute arbitrary code via PHP code in the html... Critical Unreviewed

CVE-2023-47253 was published Nov 6, 2023

An OS command injection vulnerability has been reported to affect several QNAP operating system... Critical Unreviewed

CVE-2023-23369 was published Nov 3, 2023

An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2023-46485 was published Oct 31, 2023

An issue in TOTOlink X6000R V9.4.0cu.852_B20230719 allows a remote attacker to execute arbitrary... Critical Unreviewed

CVE-2023-46484 was published Oct 31, 2023

In TOTOLINK A3300R V17.0.0cu.557_B20221024 when dealing with setLedCfg request, there is no... Critical Unreviewed

CVE-2023-46993 was published Oct 31, 2023

TOTOLINK X6000R V9.4.0cu.852_B20230719 was discovered to contain a command injection... Critical Unreviewed

CVE-2023-46979 was published Oct 31, 2023

TOTOLINK A3300R 17.0.0cu.557_B20221024 contains a command injection via the file_name parameter... Critical Unreviewed

CVE-2023-46976 was published Oct 31, 2023

tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a... Critical Unreviewed

CVE-2023-47104 was published Oct 30, 2023

VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* was discovered to contain a command... Critical Unreviewed

CVE-2023-45498 was published Oct 27, 2023

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed

CVE-2023-46423 was published Oct 25, 2023

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed

CVE-2023-46421 was published Oct 25, 2023

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed

CVE-2023-46422 was published Oct 25, 2023

TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed

CVE-2023-46420 was published Oct 25, 2023

Previous 1…10…37 Next

Previous 1 2 … 8 9 10 11 12 … 36 37 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

918 advisories