GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,533 advisories
Filter by severity
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-7076
was published
Sep 4, 2024
The Viral Signup WordPress plugin through 2.1 does not properly sanitise and escape a parameter...
Critical
Unreviewed
CVE-2024-6926
was published
Sep 4, 2024
SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at ...
Critical
Unreviewed
CVE-2024-44921
was published
Sep 3, 2024
ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) 3.0.0 through 3.2.0 allows index.php...
Critical
Unreviewed
CVE-2024-45622
was published
Sep 2, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-6919
was published
Sep 2, 2024
SQL Injection in download student learning course function of Easytest Online Test Platform ver...
Critical
Unreviewed
CVE-2024-43772
was published
Sep 2, 2024
SQL Injection in download class learning course function of Easytest Online Test Platform ver...
Critical
Unreviewed
CVE-2024-43773
was published
Sep 2, 2024
In WhatsUp Gold versions released before 2024.0.0, if the application is configured with only a...
Critical
Unreviewed
CVE-2024-6671
was published
Aug 30, 2024
In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an...
Critical
Unreviewed
CVE-2024-6670
was published
Aug 30, 2024
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php.
Critical
Unreviewed
CVE-2024-41372
was published
Aug 29, 2024
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php.
Critical
Unreviewed
CVE-2024-41370
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-39653
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43132
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43941
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43918
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43144
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43917
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-5057
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-38795
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-39622
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29727
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29725
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29731
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29724
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29723
was published
Aug 29, 2024
ProTip!
Advisories are also available from the
GraphQL API