GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
6,229 advisories
Filter by severity
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39658
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39638
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38793
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38693
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43942
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39620
was published
Aug 29, 2024
The Front End Users plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order...
High
Unreviewed
CVE-2024-7607
was published
Aug 29, 2024
Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions...
High
Unreviewed
CVE-2024-5546
was published
Aug 28, 2024
A vulnerability exists in FileCatalyst Workflow whereby a field accessible to the super admin can...
High
Unreviewed
CVE-2024-6632
was published
Aug 27, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43966
was published
Aug 26, 2024
Diesel vulnerable to Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts
High
GHSA-wq9x-qwcq-mmgf
was published
for
diesel
(Rust)
Aug 23, 2024
A SQL Injection vulnerability exists in the service configuration functionality in Centreon Web...
High
Unreviewed
CVE-2024-39841
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-5586
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-36514
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-5556
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-5490
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-5467
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-36515
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-36516
was published
Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL...
High
Unreviewed
CVE-2024-36517
was published
Aug 23, 2024
Centreon updateServiceHost SQL Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-5723
was published
Aug 21, 2024
Centreon initCurveList SQL Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2024-5725
was published
Aug 21, 2024
A SQL injection vulnerability in "/music/ajax.php?action=find_music" in Kashipara Music...
High
Unreviewed
CVE-2024-42782
was published
Aug 21, 2024
A SQL injection vulnerability in "/music/view_user.php" in Kashipara Music Management System v1.0...
High
Unreviewed
CVE-2024-42786
was published
Aug 21, 2024
A SQL injection vulnerability in /music/index.php?page=view_playlist in Kashipara Music...
High
Unreviewed
CVE-2024-42785
was published
Aug 21, 2024
ProTip!
Advisories are also available from the
GraphQL API