GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,671
Composer 5,012
Erlang 39
GitHub Actions 38
Go 2,655
Maven 6,111
npm 4,284
NuGet 760
pip 4,067
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,404

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

589 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02... Moderate Unreviewed

CVE-2025-60700 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-882 Router firmware DIR882A1_FW102B02... Moderate Unreviewed

CVE-2025-60701 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware... Moderate Unreviewed

CVE-2025-60673 was published Nov 13, 2025

A command injection vulnerability exists in the TOTOLINK A950RG Router firmware V5.9c... Moderate Unreviewed

CVE-2025-60702 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware... Moderate Unreviewed

CVE-2025-60672 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0... Moderate Unreviewed

CVE-2025-60675 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the D-Link DIR-878A1 router firmware... Moderate Unreviewed

CVE-2025-60676 was published Nov 13, 2025

A command injection vulnerability exists in the D-Link DIR-823G router firmware DIR823G_V1.0... Moderate Unreviewed

CVE-2025-60671 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the Start_EPI function of the httpd... Moderate Unreviewed

CVE-2025-60689 was published Nov 13, 2025

A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu... Moderate Unreviewed

CVE-2025-60682 was published Nov 13, 2025

A command injection vulnerability exists in the ToToLink A720R Router firmware V4.1.5cu... Moderate Unreviewed

CVE-2025-60683 was published Nov 13, 2025

An unauthenticated command injection vulnerability exists in the ToToLink LR1200GB Router... Moderate Unreviewed

CVE-2025-60687 was published Nov 13, 2025

KERUI K259 5MP Wi-Fi / Tuya Smart Security Camera firmware v33.53.87 contains a code execution... Moderate Unreviewed

CVE-2025-63296 was published Nov 10, 2025

Improper neutralization of special elements used in a command ('command injection') in Visual... Moderate Unreviewed

CVE-2025-62214 was published Nov 11, 2025

Dell CloudLink, versions prior 8.1.1, contain a Command Injection vulnerability which can be... Moderate Unreviewed

CVE-2025-46365 was published Nov 5, 2025

PHPJabbers Event Booking Calendar v4.0 is vulnerable to Multiple HTML Injection in the "name,... Moderate Unreviewed

CVE-2023-51295 was published May 8, 2025

A vulnerability was found in LB-LINK AC1900 Router 1.0.2 and classified as critical. Affected by... Moderate Unreviewed

CVE-2025-1610 was published Feb 24, 2025

A vulnerability, which was classified as critical, was found in LB-LINK AC1900 Router 1.0.2.... Moderate Unreviewed

CVE-2025-1608 was published Feb 24, 2025

A vulnerability has been found in LB-LINK AC1900 Router 1.0.2 and classified as critical.... Moderate Unreviewed

CVE-2025-1609 was published Feb 24, 2025

Splinefont in FontForge through 20230101 allows command injection via crafted filenames. Moderate Unreviewed

CVE-2024-25081 was published Feb 26, 2024

Splinefont in FontForge through 20230101 allows command injection via crafted archives or... Moderate Unreviewed

CVE-2024-25082 was published Feb 26, 2024

An issue in NetSurf v.3.11 allows a remote attacker to execute arbitrary code via the... Moderate Unreviewed

CVE-2024-51317 was published Nov 3, 2025

Amanda 3.5.1 allows privilege escalation from the regular user backup to root. The SUID binary... Moderate Unreviewed

CVE-2022-37704 was published Apr 16, 2023

A vulnerability has been found in the CPython `venv` module and CLI where path names provided... Moderate Unreviewed

CVE-2024-9287 was published Oct 22, 2024

Due to insufficient escaping of the newline character in the “Copy as cURL” feature, an attacker... Moderate Unreviewed

CVE-2025-5264 was published May 27, 2025

Previous1…24 Next

Previous 1 2 3 4 5 … 23 24 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

589 advisories