GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
6,229 advisories
Filter by severity
NETGEAR ProSAFE Network Management System getSortString SQL Injection Remote Code Execution...
High
Unreviewed
CVE-2024-6813
was published
Aug 21, 2024
NETGEAR ProSAFE Network Management System getFilterString SQL Injection Remote Code Execution...
High
Unreviewed
CVE-2024-6814
was published
Aug 21, 2024
LF Edge eKuiper has a SQL Injection in sqlKvStore
High
CVE-2024-43406
was published
for
ekuiper
(Go)
Aug 20, 2024
Keyfactor Command 10.5.x before 10.5.1 and 11.5.x before 11.5.1 allows SQL Injection which could...
High
Unreviewed
CVE-2024-34458
was published
Aug 20, 2024
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2024-42566
was published
Aug 20, 2024
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2024-42552
was published
Aug 20, 2024
ERP commit 44bd04 was discovered to contain a SQL injection vulnerability via the id parameter at...
High
Unreviewed
CVE-2024-42564
was published
Aug 20, 2024
Pharmacy Management System commit a2efc8 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2024-42561
was published
Aug 20, 2024
Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2024-42554
was published
Aug 20, 2024
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &...
High
Unreviewed
CVE-2024-7780
was published
Aug 20, 2024
The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form &...
High
Unreviewed
CVE-2024-7702
was published
Aug 20, 2024
The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to boolean-based SQL...
High
Unreviewed
CVE-2024-7827
was published
Aug 20, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43286
was published
Aug 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43145
was published
Aug 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43207
was published
Aug 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43282
was published
Aug 19, 2024
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'couponId'...
High
Unreviewed
CVE-2023-3419
was published
Aug 17, 2024
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the ...
High
Unreviewed
CVE-2023-3416
was published
Aug 17, 2024
VTiger CRM <= 8.1.0 does not properly sanitize user input before using it in a SQL statement,...
High
Unreviewed
CVE-2024-42994
was published
Aug 16, 2024
AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to...
High
Unreviewed
CVE-2024-6456
was published
Aug 15, 2024
SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows...
High
Unreviewed
CVE-2024-42679
was published
Aug 15, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL...
High
Unreviewed
CVE-2024-5487
was published
Aug 12, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL...
High
Unreviewed
CVE-2024-5527
was published
Aug 12, 2024
A SQL injection vulnerability in "/admin/quizquestion.php" in Kashipara Online Exam System v1.0...
High
Unreviewed
CVE-2024-40479
was published
Aug 12, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL...
High
Unreviewed
CVE-2024-36518
was published
Aug 12, 2024
ProTip!
Advisories are also available from the
GraphQL API