Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,231
Erlang
31
GitHub Actions
20
Go
1,991
Maven
5,000+
npm
3,709
NuGet
661
pip
3,341
Pub
11
RubyGems
884
Rust
846
Swift
36
Unreviewed advisories
All unreviewed
5,000+

938 advisories

Loading
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46421 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46417 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46423 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46422 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46418 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46424 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46409 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46411 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46408 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46413 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46412 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a command execution... Critical Unreviewed
CVE-2023-46410 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46415 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46414 was published Oct 25, 2023
TOTOLINK X6000R v9.4.0cu.652_B20230116 was discovered to contain a remote command execution (RCE)... Critical Unreviewed
CVE-2023-46416 was published Oct 25, 2023
An issue in TOTOLINK A3700R v.9.1.2u.6165_20211012 allows a remote attacker to execute arbitrary... Critical Unreviewed
CVE-2023-46574 was published Oct 25, 2023
Tenda W18E V16.01.0.8(1576) has a command injection vulnerability via the hostName parameter in... Critical Unreviewed
CVE-2023-46370 was published Oct 25, 2023
TOTOLINK CP300+ V5.2cu.7594_B20200910 and before is vulnerable to command injection. Critical Unreviewed
CVE-2023-36954 was published Oct 16, 2023
TOTOLINK CP300+ V5.2cu.7594_B20200910 and before is vulnerable to command injection. Critical Unreviewed
CVE-2023-36953 was published Oct 16, 2023
In Vitogate 300 2.1.3.0, /cgi-bin/vitogate.cgi allows an unauthenticated attacker to bypass... Critical Unreviewed
CVE-2023-45852 was published Oct 14, 2023
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2023-45465 was published Oct 13, 2023
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability via the... Critical Unreviewed
CVE-2023-45466 was published Oct 13, 2023
A command execution vulnerability exists in the validate.so diag_ping_start functionality of... Critical Unreviewed
CVE-2023-32632 was published Oct 11, 2023
geokit-rails Command Injection vulnerability Critical
CVE-2023-26153 was published for geokit-rails (RubyGems) Oct 6, 2023
Netis N3Mv2-V1.0.1.865 was discovered to contain a command injection vulnerability in the... Critical Unreviewed
CVE-2023-43891 was published Oct 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database