GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,979
Composer 4,785
Erlang 36
GitHub Actions 29
Go 2,358
Maven 5,673
npm 3,979
NuGet 720
pip 3,777
Pub 12
RubyGems 924
Rust 981
Swift 38

Unreviewed advisories

All unreviewed 260,842

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

886 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed

CVE-2025-45988 was published Jun 13, 2025

Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed

CVE-2025-45986 was published Jun 13, 2025

Blink routers BL-WR9000 V2.4.9, BL-AC1900 V1.0.2, BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 V1.0.5, BL... Critical Unreviewed

CVE-2025-45984 was published Jun 13, 2025

Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed

CVE-2025-45987 was published Jun 13, 2025

Blink routers BL-WR9000 V2.4.9 , BL-AC2100_AZ3 V1.0.4, BL-X10_AC8 v1.0.5 , BL-LTE300 v1.2.3, BL... Critical Unreviewed

CVE-2025-45985 was published Jun 13, 2025

Ai command injection in M365 Copilot allows an unauthorized attacker to disclose information over... Critical Unreviewed

CVE-2025-32711 was published Jun 11, 2025

The Evertz SVDN 3080ipx-10G is a High Bandwidth Ethernet Switching Fabric for Video Application.... Critical Unreviewed

CVE-2025-4009 was published May 28, 2025

The Meteobridge web interface let meteobridge administrator manage their weather station data... Critical Unreviewed

CVE-2025-4008 was published May 21, 2025

D-link DI-8100 16.07.26A1 is vulnerable to Command Injection. An attacker can exploit this... Critical Unreviewed

CVE-2025-44084 was published May 20, 2025

Jan v0.5.14 and before is vulnerable to remote code execution (RCE) when the user clicks on a... Critical Unreviewed

CVE-2025-29509 was published May 9, 2025

EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading... Critical Unreviewed

CVE-2024-12442 was published May 9, 2025

EnerSys AMPA 22.09 and prior versions are vulnerable to command injection leading to privileged... Critical Unreviewed

CVE-2024-11861 was published May 9, 2025

Linksys E5600 v1.1.0.26 was discovered to contain a command injection vulnerability in the... Critical Unreviewed

CVE-2025-45491 was published May 6, 2025

Tenda AC9 v15.03.05.14 was discovered to contain a command injection vulnerability via the Telnet... Critical Unreviewed

CVE-2025-45042 was published May 5, 2025

TOTOLINK A950RG V4.1.2cu.5204_B20210112 contains a command execution vulnerability in the... Critical Unreviewed

CVE-2025-45800 was published May 2, 2025

Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the... Critical Unreviewed

CVE-2025-44872 was published May 2, 2025

Tenda AC9 V15.03.06.42_multi was found to contain a command injection vulnerability in the... Critical Unreviewed

CVE-2025-44877 was published May 2, 2025

Wavlink WL-WN530H4 20220801 was found to contain a command injection vulnerability in the... Critical Unreviewed

CVE-2025-44868 was published May 2, 2025

TOTOLINK X18 v9.1.0cu.2024_B20220329 has an unauthorized arbitrary command execution in the... Critical Unreviewed

CVE-2025-29209 was published Apr 21, 2025

An issue in BL-AC2100 V1.0.4 and before allows a remote attacker to execute arbitrary code via... Critical Unreviewed

CVE-2025-29063 was published Apr 2, 2025

An issue in BL-AC2100 <=V1.0.4 allows a remote attacker to execute arbitrary code via the time1... Critical Unreviewed

CVE-2025-29062 was published Apr 2, 2025

In Netgear WNR854T 1.5.2 (North America), the UPNP service (/usr/sbin/upnp) is vulnerable to... Critical Unreviewed

CVE-2024-54802 was published Mar 31, 2025

A command injection vulnerability in the telnet service of Adtran 411 ONT L80.00.0011.M2 allows... Critical Unreviewed

CVE-2025-22939 was published Mar 31, 2025

A command injection vulnerability in the web interface of Adtran 411 ONT L80.00.0011.M2 allows... Critical Unreviewed

CVE-2025-22941 was published Mar 31, 2025

A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows... Critical Unreviewed

CVE-2024-55030 was published Mar 25, 2025

Previous 1 2 3 4 5 … 35 36 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

886 advisories