Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

6,229 advisories

Loading
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-39658 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-39638 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-38793 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-38693 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43942 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-39620 was published Aug 29, 2024
The Front End Users plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order... High Unreviewed
CVE-2024-7607 was published Aug 29, 2024
Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions... High Unreviewed
CVE-2024-5546 was published Aug 28, 2024
A vulnerability exists in FileCatalyst Workflow whereby a field accessible to the super admin can... High Unreviewed
CVE-2024-6632 was published Aug 27, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43966 was published Aug 26, 2024
Diesel vulnerable to Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts High
GHSA-wq9x-qwcq-mmgf was published for diesel (Rust) Aug 23, 2024
A SQL Injection vulnerability exists in the service configuration functionality in Centreon Web... High Unreviewed
CVE-2024-39841 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-5586 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-36514 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-5556 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-5490 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-5467 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-36515 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-36516 was published Aug 23, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL... High Unreviewed
CVE-2024-36517 was published Aug 23, 2024
Centreon updateServiceHost SQL Injection Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-5723 was published Aug 21, 2024
Centreon initCurveList SQL Injection Remote Code Execution Vulnerability. This vulnerability... High Unreviewed
CVE-2024-5725 was published Aug 21, 2024
A SQL injection vulnerability in "/music/ajax.php?action=find_music" in Kashipara Music... High Unreviewed
CVE-2024-42782 was published Aug 21, 2024
A SQL injection vulnerability in "/music/view_user.php" in Kashipara Music Management System v1.0... High Unreviewed
CVE-2024-42786 was published Aug 21, 2024
A SQL injection vulnerability in /music/index.php?page=view_playlist in Kashipara Music... High Unreviewed
CVE-2024-42785 was published Aug 21, 2024
ProTip! Advisories are also available from the GraphQL API