Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,243 advisories

Loading
Online Clinic Management System In PHP With Free Source code v1.0 was discovered to contain a SQL... Critical Unreviewed
CVE-2024-40393 was published Jul 16, 2024
The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to... Critical Unreviewed
CVE-2024-6457 was published Jul 16, 2024
AguardNet's Space Management System does not properly validate user input, allowing... Critical Unreviewed
CVE-2024-6743 was published Jul 15, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2024-40542 was published Jul 12, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2024-40539 was published Jul 12, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2024-40541 was published Jul 12, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2024-40540 was published Jul 12, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-37933 was published Jul 12, 2024
SQL injection vulnerability in view_payslip.php in Itsourcecode Payroll Management System Project... Critical Unreviewed
CVE-2024-37873 was published Jul 9, 2024
SQL injection vulnerability in processscore.php in Learning Management System Project In PHP With... Critical Unreviewed
CVE-2024-37870 was published Jul 9, 2024
SQL Injection vulnerability in parameter "w" in file "druk.php" in MegaBIP software allows... Critical Unreviewed
CVE-2024-6527 was published Jul 9, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-37112 was published Jul 9, 2024
The OSM – OpenStreetMap plugin for WordPress is vulnerable to SQL Injection via the ... Critical Unreviewed
CVE-2024-3604 was published Jul 9, 2024
SQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute... Critical Unreviewed
CVE-2024-27709 was published Jul 5, 2024
Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to a blind SQL Injection... Critical Unreviewed
CVE-2024-3816 was published Jul 3, 2024
The Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress... Critical Unreviewed
CVE-2024-6172 was published Jul 2, 2024
The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin... Critical Unreviewed
CVE-2024-6265 was published Jun 29, 2024
Vanna v0.3.4 is vulnerable to SQL injection in its DuckDB integration exposed to its Flask Web... Critical Unreviewed
CVE-2024-5827 was published Jun 29, 2024
Intrado 911 Emergency Gateway login form is vulnerable to an unauthenticated blind time-based SQL... Critical Unreviewed
CVE-2024-1839 was published Jun 26, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 200 -... Critical Unreviewed
CVE-2024-4228 was published Jun 26, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-37252 was published Jun 26, 2024
Craft CMS SQL injection vulnerability via the GraphQL API endpoint Critical
CVE-2024-37843 was published for craftcms/cms (Composer) Jun 25, 2024
A SQL Injection vulnerability in Fortra FileCatalyst Workflow allows an attacker to modify... Critical Unreviewed
CVE-2024-5276 was published Jun 25, 2024
SQL Injection vulnerability in the module "Isotope" (pk_isotope) <=1.7.3 from Promokit.eu for... Critical Unreviewed
CVE-2024-36681 was published Jun 25, 2024
SQL injection vulnerability in the module "Complete for Create a Quote in Frontend + Backend Pro"... Critical Unreviewed
CVE-2024-34988 was published Jun 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database