Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,526 advisories

Loading
Beijing Netcon NS-ASG Application Security Gateway v6.3 is vulnerable to SQL Injection via... High Unreviewed
CVE-2023-30243 was published May 5, 2023
Judging Management System v1.0 is vulnerable to SQL Injection. via /php-jms/review_se_result.php... Critical Unreviewed
CVE-2023-30018 was published May 8, 2023
SQL Injection vulnerability in victor cms 1.0 allows attackers to execute arbitrary commands via... Critical Unreviewed
CVE-2020-23966 was published May 8, 2023
SQL Injection vulnerability in CMS Made Simple through 2.2.15 allows remote attackers to execute... High Unreviewed
CVE-2021-28999 was published May 8, 2023
The Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop WordPress plugin... Critical Unreviewed
CVE-2022-4118 was published May 8, 2023
The Avirato hotels online booking engine WordPress plugin through 5.0.5 does not validate and... High Unreviewed
CVE-2023-0768 was published May 8, 2023
The Video List Manager WordPress plugin through 1.7 does not properly sanitise and escape a... High Unreviewed
CVE-2023-1408 was published May 8, 2023
The NEX-Forms WordPress plugin before 8.4 does not properly escape the `table` parameter, which... High Unreviewed
CVE-2023-2114 was published May 8, 2023
SourceCodester Online Pizza Ordering System v1.0 is vulnerable to SQL Injection via the QTY... Critical Unreviewed
CVE-2023-30092 was published May 8, 2023
An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x... Critical Unreviewed
CVE-2023-32569 was published May 10, 2023
Prestashop posstaticfooter <= 1.0.0 is vulnerable to SQL Injection via posstaticfooter:... Critical Unreviewed
CVE-2023-30194 was published May 10, 2023
Medical Systems Co. Medisys Weblab Products v19.4.03 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2023-29863 was published May 11, 2023
A NoSQL injection vulnerability has been identified in the listEmojiCustom method call within... Moderate Unreviewed
CVE-2023-28359 was published May 12, 2023
Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via PosSearch::find(). Critical Unreviewed
CVE-2023-30192 was published May 12, 2023
SQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to... Critical Unreviewed
CVE-2023-30246 was published May 12, 2023
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 6.9 does not escape user... Critical Unreviewed
CVE-2023-0600 was published May 15, 2023
This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes... High Unreviewed
CVE-2023-1207 was published May 15, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php... High Unreviewed
CVE-2023-31842 was published May 15, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin... High Unreviewed
CVE-2023-31843 was published May 15, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin... High Unreviewed
CVE-2023-31845 was published May 15, 2023
Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin... High Unreviewed
CVE-2023-31844 was published May 15, 2023
An issue in the __libc_malloc component of openlink virtuoso-opensource v7.2.9 allows attackers... High Unreviewed
CVE-2023-31607 was published May 15, 2023
An issue in the artm_div_int component of openlink virtuoso-opensource v7.2.9 allows attackers to... High Unreviewed
CVE-2023-31608 was published May 15, 2023
An issue in the dfe_unit_col_loci component of openlink virtuoso-opensource v7.2.9 allows... High Unreviewed
CVE-2023-31609 was published May 15, 2023
An issue in the _IO_default_xsputn component of openlink virtuoso-opensource v7.2.9 allows... High Unreviewed
CVE-2023-31610 was published May 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database