GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
12,193 advisories
Filter by severity
In Connex health portal released before8/30/2024, SQL injection vulnerabilities were found that...
Critical
Unreviewed
CVE-2024-6795
was published
Sep 9, 2024
AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at...
High
Unreviewed
CVE-2024-44725
was published
Sep 9, 2024
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-8570
was published
Sep 8, 2024
The TrueBooker WordPress plugin before 1.0.3 does not properly sanitise and escape a parameter...
Critical
Unreviewed
CVE-2024-6924
was published
Sep 8, 2024
A vulnerability has been found in code-projects Hospital Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-8569
was published
Sep 8, 2024
A vulnerability, which was classified as critical, has been found in itsourcecode Payroll...
Moderate
Unreviewed
CVE-2024-8567
was published
Sep 8, 2024
A vulnerability, which was classified as critical, was found in Mini-Tmall up to 20240901....
Moderate
Unreviewed
CVE-2024-8568
was published
Sep 8, 2024
A vulnerability was found in SourceCodesters Clinics Patient Management System 2.0. It has been...
Moderate
Unreviewed
CVE-2024-8565
was published
Sep 8, 2024
A vulnerability has been found in SourceCodester PHP CRUD 1.0 and classified as critical....
Moderate
Unreviewed
CVE-2024-8561
was published
Sep 7, 2024
A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been declared as critical. This...
Moderate
Unreviewed
CVE-2024-8564
was published
Sep 7, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Simple Invoice...
Moderate
Unreviewed
CVE-2024-8560
was published
Sep 7, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Online Food...
Moderate
Unreviewed
CVE-2024-8559
was published
Sep 7, 2024
A vulnerability classified as critical has been found in SourceCodester Food Ordering Management...
Moderate
Unreviewed
CVE-2024-8557
was published
Sep 7, 2024
The Pinpoint Booking System – #1 WordPress Booking Plugin plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-7112
was published
Sep 7, 2024
RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid...
Critical
Unreviewed
CVE-2024-44839
was published
Sep 7, 2024
RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the password...
Critical
Unreviewed
CVE-2024-45771
was published
Sep 7, 2024
RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the username...
Critical
Unreviewed
CVE-2024-44838
was published
Sep 7, 2024
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the...
High
Unreviewed
CVE-2023-50360
was published
Sep 6, 2024
Sourcecodester Simple Forum Website v1.0 has a SQL injection vulnerability in /php-sqlite-forum/...
High
Unreviewed
CVE-2024-44739
was published
Sep 6, 2024
The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is...
High
Unreviewed
CVE-2024-7349
was published
Sep 6, 2024
FlyCASS CASS and KCM systems did not correctly filter SQL queries, which
made them vulnerable to...
Critical
Unreviewed
CVE-2024-8395
was published
Sep 5, 2024
Sourcecodehero Event Management System1.0 is vulnerable to SQL Injection via the parameter ...
High
Unreviewed
CVE-2024-44727
was published
Sep 5, 2024
SQL Injection vulnerability in ESAFENET CDG 5.6 and before allows an attacker to execute...
Critical
Unreviewed
CVE-2024-42885
was published
Sep 5, 2024
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via...
High
Unreviewed
CVE-2024-44587
was published
Sep 5, 2024
SQL injection vulnerability, by which an attacker could send a specially designed query through...
Critical
Unreviewed
CVE-2024-8469
was published
Sep 5, 2024
ProTip!
Advisories are also available from the
GraphQL API