Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,179
Erlang
31
GitHub Actions
19
Go
1,982
Maven
5,000+
npm
3,701
NuGet
656
pip
3,323
Pub
11
RubyGems
882
Rust
834
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,532 advisories

Loading
The Viral Signup WordPress plugin through 2.1 does not properly sanitise and escape a parameter... Critical Unreviewed
CVE-2024-6926 was published Sep 4, 2024
SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at ... Critical Unreviewed
CVE-2024-44921 was published Sep 3, 2024
ASIS (aka Aplikasi Sistem Sekolah using CodeIgniter 3) 3.0.0 through 3.2.0 allows index.php... Critical Unreviewed
CVE-2024-45622 was published Sep 2, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-6919 was published Sep 2, 2024
SQL Injection in download class learning course function of Easytest Online Test Platform ver... Critical Unreviewed
CVE-2024-43773 was published Sep 2, 2024
SQL Injection in download student learning course function of Easytest Online Test Platform ver... Critical Unreviewed
CVE-2024-43772 was published Sep 2, 2024
In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an... Critical Unreviewed
CVE-2024-6670 was published Aug 30, 2024
In WhatsUp Gold versions released before 2024.0.0, if the application is configured with only a... Critical Unreviewed
CVE-2024-6671 was published Aug 30, 2024
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. Critical Unreviewed
CVE-2024-41370 was published Aug 29, 2024
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. Critical Unreviewed
CVE-2024-41372 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43918 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43144 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-5057 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-38795 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-39622 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43917 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43941 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-39653 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43132 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29731 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29724 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29727 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29728 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29725 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29726 was published Aug 29, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database