Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,516 advisories

Loading
LeoTheme leoblog up to v3.1.2 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-39639 was published Sep 15, 2023
A SQL injection vulnerability in Didotech srl Engineering & Lifecycle Management (aka pdm) v.14.0... High Unreviewed
CVE-2023-40955 was published Sep 15, 2023
Active Design psaffiliate before v1.9.8 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2023-39641 was published Sep 15, 2023
Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-39642 was published Sep 15, 2023
A SQL injection vulnerability in Didotech srl Engineering & Lifecycle Management (aka pdm) v.14.0... High Unreviewed
CVE-2023-40957 was published Sep 15, 2023
A SQL injection vulnerability in Didotech srl Engineering & Lifecycle Management (aka pdm) v.14.0... High Unreviewed
CVE-2023-40958 was published Sep 15, 2023
A SQL injection vulnerability in Cloudroits Website Job Search v.15.0 allows a remote... High Unreviewed
CVE-2023-40956 was published Sep 15, 2023
Bl Modules xmlfeeds before v3.9.8 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-39643 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4673 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4830 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4231 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4670 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4661 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4831 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4835 was published Sep 15, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4833 was published Sep 15, 2023
SUNNET WMPro portal's FAQ function has insufficient validation for user input. An... High Unreviewed
CVE-2023-35851 was published Sep 18, 2023
SQL injection vulnerability in Exam Form Submission in PHP with Source Code v.1.0 allows a remote... Critical Unreviewed
CVE-2023-42359 was published Sep 18, 2023
SQL Injection vulnerability in SearchTextBox parameter in Fortra (Formerly HelpSystems)... Critical Unreviewed
CVE-2021-26837 was published Sep 19, 2023
A SQL injection in the flutter_downloader component through 1.11.1 for iOS allows remote... Critical Unreviewed
CVE-2023-41387 was published Sep 19, 2023
SQL injection vulnerability in Arconte Áurea, in its 1.5.0.0 version. The exploitation of this... Critical Unreviewed
CVE-2023-4092 was published Sep 19, 2023
SQL injection vulnerability in Novel-Plus v.4.1.0 allows a remote attacker to execute arbitrary... High Unreviewed
CVE-2023-41443 was published Sep 19, 2023
A SQL injection vulnerability in Nagios XI from version 5.11.0 up to and including 5.11.1 allows... Moderate Unreviewed
CVE-2023-40931 was published Sep 20, 2023
A SQL injection vulnerability in Nagios XI v5.11.1 and below allows authenticated attackers with... High Unreviewed
CVE-2023-40933 was published Sep 20, 2023
A SQL injection vulnerability in Nagios XI 5.11.1 and below allows authenticated attackers with... High Unreviewed
CVE-2023-40934 was published Sep 20, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database