Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,541 advisories

Loading
A vulnerability, which was classified as critical, was found in CXBSoft Post-Office 1.0. Affected... Moderate Unreviewed
CVE-2024-0528 was published Jan 15, 2024
A vulnerability classified as critical has been found in CodeAstro Real Estate Management System... Moderate Unreviewed
CVE-2024-0543 was published Jan 15, 2024
A vulnerability was found in Taokeyun up to 1.0.5. It has been declared as critical. Affected by... High Unreviewed
CVE-2024-0480 was published Jan 13, 2024
The RSVPMaker plugin for WordPress is vulnerable to unauthenticated SQL Injection due to... High Unreviewed
CVE-2022-1768 was published Jun 14, 2022
A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. This vulnerability... Moderate Unreviewed
CVE-2024-0558 was published Jan 15, 2024
A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which... Moderate Unreviewed
CVE-2020-26627 was published Jan 10, 2024
Blind SQL injection in shopware Critical
CVE-2024-22406 was published for shopware/core (Composer) Jan 17, 2024
The LearnPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order_by’... Critical Unreviewed
CVE-2023-6567 was published Jan 11, 2024
A vulnerability was found in PHPGurukul Company Visitor Management System 1.0. It has been... Moderate Unreviewed
CVE-2024-0651 was published Jan 18, 2024
A vulnerability has been found in Novel-Plus 4.3.0-RC1 and classified as critical. Affected by... Moderate Unreviewed
CVE-2024-0655 was published Jan 18, 2024
A vulnerability has been identified in SiNVR 3 Central Control Server (CCS) (all versions), SiNVR... Moderate Unreviewed
CVE-2019-19292 was published May 24, 2022
The WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin... Moderate Unreviewed
CVE-2023-6981 was published Jan 3, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-5806 was published Jan 18, 2024
Complete Supplier Management System v1.0 is vulnerable to SQL Injection via ... High Unreviewed
CVE-2024-22627 was published Jan 16, 2024
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expense_budget/admin/... High Unreviewed
CVE-2024-22628 was published Jan 16, 2024
Complete Supplier Management System v1.0 is vulnerable to SQL Injection via ... High Unreviewed
CVE-2024-22625 was published Jan 16, 2024
Complete Supplier Management System v1.0 is vulnerable to SQL Injection via ... High Unreviewed
CVE-2024-22626 was published Jan 16, 2024
A vulnerability, which was classified as critical, has been found in ForU CMS up to 2020-06-23.... Moderate Unreviewed
CVE-2024-0729 was published Jan 19, 2024
A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this... Moderate Unreviewed
CVE-2024-0734 was published Jan 19, 2024
A vulnerability, which was classified as critical, was found in Project Worlds Online Time Table... Moderate Unreviewed
CVE-2024-0730 was published Jan 19, 2024
A vulnerability was found in Smsot up to 2.12. It has been classified as critical. Affected is an... Moderate Unreviewed
CVE-2024-0733 was published Jan 19, 2024
A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has... Moderate Unreviewed
CVE-2024-0735 was published Jan 19, 2024
SQL Injection vulnerability in Buy Addons baproductzoommagnifier module for PrestaShop versions 1... Critical Unreviewed
CVE-2023-50027 was published Jan 5, 2024
The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is... Moderate Unreviewed
CVE-2022-2718 was published Sep 7, 2022
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain... Moderate Unreviewed
CVE-2023-39853 was published Jan 6, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database