Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,193 advisories

Loading
A vulnerability has been found in ECshop 4.1.1 and classified as critical. Affected by this... Moderate Unreviewed
CVE-2023-5294 was published Sep 30, 2023
A vulnerability was found in Tongda OA 2017. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2023-5298 was published Sep 30, 2023
A vulnerability classified as critical has been found in TTSPlanning up to 20230925. This affects... Moderate Unreviewed
CVE-2023-5300 was published Sep 30, 2023
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in D... Moderate Unreviewed
CVE-2023-5322 was published Oct 1, 2023
A vulnerability was found in Most Popular Posts Widget Plugin up to 0.8 on WordPress. It has been... Moderate Unreviewed
CVE-2015-10124 was published Oct 2, 2023
There is a SQL injection vulnerability in the Jizhicms 2.4.9 backend, which users can use to... Moderate Unreviewed
CVE-2023-43836 was published Oct 2, 2023
Presto Changeo testsitecreator up to v1.1.1 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2023-43980 was published Oct 3, 2023
It has been identified that the web application does not correctly filter input parameters,... High Unreviewed
CVE-2023-4098 was published Oct 3, 2023
QSige statistics are affected by a remote SQLi vulnerability. It has been identified that the web... High Unreviewed
CVE-2023-4103 was published Oct 3, 2023
QSige login SSO does not have an access control mechanism to verify whether the user requesting a... High Unreviewed
CVE-2023-4102 was published Oct 3, 2023
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.14.1. Moderate Unreviewed
CVE-2023-5350 was published Oct 3, 2023
An SQL Injection vulnerability has been found on Jorani version 1.0.0. This vulnerability allows... High Unreviewed
CVE-2023-2681 was published Oct 3, 2023
Theme volty tvcmspaymenticon up to v4.0.1 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2023-39645 was published Oct 3, 2023
Improper neutralization of SQL parameter in Theme Volty CMS Testimonial module for PrestaShop. In... Critical Unreviewed
CVE-2023-39648 was published Oct 4, 2023
Improper neutralization of SQL parameter in Theme Volty CMS BrandList module for PrestaShop In... Critical Unreviewed
CVE-2023-39651 was published Oct 4, 2023
Improper neutralization of SQL parameter in Theme Volty CMS Category Product module for... Critical Unreviewed
CVE-2023-39647 was published Oct 4, 2023
Improper neutralization of SQL parameter in Theme Volty CMS Category Chain Slider module for... Critical Unreviewed
CVE-2023-39646 was published Oct 4, 2023
Improper neutralization of SQL parameter in Theme Volty CMS Category Slider module for PrestaShop... Critical Unreviewed
CVE-2023-39649 was published Oct 4, 2023
Blind SQL injection vulnerability in the Conacwin 3.7.1.2 web interface, the exploitation of... Moderate Unreviewed
CVE-2023-4037 was published Oct 4, 2023
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability... High Unreviewed
CVE-2023-3038 was published Oct 4, 2023
A vulnerability classified as critical has been found in SourceCodester Online Computer and... High Unreviewed
CVE-2023-5373 was published Oct 4, 2023
A vulnerability classified as critical was found in SourceCodester Online Computer and Laptop... Moderate Unreviewed
CVE-2023-5374 was published Oct 4, 2023
TCMAN GIM v8.0.1 is vulnerable to a SQL injection via the 'SqlWhere' parameter inside the... Critical Unreviewed
CVE-2022-36276 was published Oct 4, 2023
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified... Moderate Unreviewed
CVE-2023-5423 was published Oct 5, 2023
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp ... Critical Unreviewed
CVE-2023-44024 was published Oct 5, 2023
ProTip! Advisories are also available from the GraphQL API