Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

6,229 advisories

Loading
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution... High Unreviewed
CVE-2024-6813 was published Aug 21, 2024
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution... High Unreviewed
CVE-2024-6814 was published Aug 21, 2024
LF Edge eKuiper has a SQL Injection in sqlKvStore High
CVE-2024-43406 was published for ekuiper (Go) Aug 20, 2024
leonnewton
Keyfactor Command 10.5.x before 10.5.1 and 11.5.x before 11.5.1 allows SQL Injection which could... High Unreviewed
CVE-2024-34458 was published Aug 20, 2024
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2024-42566 was published Aug 20, 2024
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2024-42552 was published Aug 20, 2024
ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at... High Unreviewed
CVE-2024-42564 was published Aug 20, 2024
Pharmacy Management System commit a2efc8 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2024-42561 was published Aug 20, 2024
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2024-42554 was published Aug 20, 2024
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... High Unreviewed
CVE-2024-7780 was published Aug 20, 2024
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &... High Unreviewed
CVE-2024-7702 was published Aug 20, 2024
The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to boolean-based SQL... High Unreviewed
CVE-2024-7827 was published Aug 20, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43286 was published Aug 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43145 was published Aug 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43207 was published Aug 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43282 was published Aug 19, 2024
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'couponId'... High Unreviewed
CVE-2023-3419 was published Aug 17, 2024
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the ... High Unreviewed
CVE-2023-3416 was published Aug 17, 2024
VTiger CRM <= 8.1.0 does not properly sanitize user input before using it in a SQL statement,... High Unreviewed
CVE-2024-42994 was published Aug 16, 2024
AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to... High Unreviewed
CVE-2024-6456 was published Aug 15, 2024
SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows... High Unreviewed
CVE-2024-42679 was published Aug 15, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL... High Unreviewed
CVE-2024-5487 was published Aug 12, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL... High Unreviewed
CVE-2024-5527 was published Aug 12, 2024
A SQL injection vulnerability in "/admin/quizquestion.php" in Kashipara Online Exam System v1.0... High Unreviewed
CVE-2024-40479 was published Aug 12, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL... High Unreviewed
CVE-2024-36518 was published Aug 12, 2024
ProTip! Advisories are also available from the GraphQL API