Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,516 advisories

Loading
Download of Code Without Integrity Check vulnerability in Genians Genian NAC V4.0, Genians Genian... Critical Unreviewed
CVE-2023-40254 was published Aug 11, 2023
Blind SQL injection in a service running in Snow Software license manager from version 8.0.0 up... High Unreviewed
CVE-2023-3864 was published Aug 11, 2023
SQL Injection vulnerability in oretnom23 School Faculty Scheduling System version 1.0, allows... Critical Unreviewed
CVE-2020-36034 was published Aug 11, 2023
SQL Injection vulnerability in cskaza cszcms version 1.2.9, allows attackers to gain sensitive... High Unreviewed
CVE-2020-36136 was published Aug 11, 2023
SQL Injection in pear-admin-think version 2.1.2, allows attackers to execute arbitrary code and... High Unreviewed
CVE-2021-29378 was published Aug 11, 2023
novel-plus v3.6.2 was discovered to contain a SQL injection vulnerability. Critical Unreviewed
CVE-2023-37847 was published Aug 14, 2023
A SQL Injection vulnerability has been identified in the MiVoice Office 400 SMB Controller... Critical Unreviewed
CVE-2023-39292 was published Aug 14, 2023
The User Activity Log WordPress plugin before 1.6.5 does not correctly sanitise and escape... Critical Unreviewed
CVE-2023-3435 was published Aug 14, 2023
SQL Injection vulnerability in eVotingSystem-PHP v.1.0 allows a remote attacker to execute... High Unreviewed
CVE-2023-38916 was published Aug 15, 2023
Schoolmate v1.3 was discovered to contain multiple SQL injection vulnerabilities via the ... Critical Unreviewed
CVE-2023-39850 was published Aug 16, 2023
The YARPP WordPress plugin before 5.30.3 does not validate and escape some of its shortcode... High Unreviewed
CVE-2023-0579 was published Aug 16, 2023
In the module “Customization fields fee for your store” (aicustomfee) from ai-dev module for... Critical Unreviewed
CVE-2023-33663 was published Aug 16, 2023
SQL injection vulnerability in Kidus Minimati v.1.0.0 allows a remote attacker to obtain... High Unreviewed
CVE-2023-38838 was published Aug 17, 2023
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker... High Unreviewed
CVE-2023-31938 was published Aug 17, 2023
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker... High Unreviewed
CVE-2023-31939 was published Aug 17, 2023
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker... High Unreviewed
CVE-2023-31943 was published Aug 17, 2023
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker... High Unreviewed
CVE-2023-31940 was published Aug 17, 2023
SQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker... High Unreviewed
CVE-2023-31945 was published Aug 17, 2023
SQL injection vulnerability in Kidus Minimati v.1.0.0 allows a remote attacker to obtain... High Unreviewed
CVE-2023-38839 was published Aug 19, 2023
N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2023-39807 was published Aug 21, 2023
SQL injection vulnerability in LuxCal Web Calendar prior to 5.2.3M (MySQL version) and LuxCal Web... Critical Unreviewed
CVE-2023-39939 was published Aug 21, 2023
An issue was discovered in Geomatika IsiGeo Web 6.0. It allows remote authenticated users to... Moderate Unreviewed
CVE-2023-23563 was published Aug 22, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator... High Unreviewed
CVE-2023-37429 was published Aug 22, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator... High Unreviewed
CVE-2023-37430 was published Aug 22, 2023
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator... High Unreviewed
CVE-2023-37432 was published Aug 22, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database