GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
12,193 advisories
Filter by severity
SQL Injection vulnerability in /app/api/controller/Store.php in Niushop B2B2C V5 allows attackers...
Critical
Unreviewed
CVE-2024-25247
was published
Feb 27, 2024
ChurchCRM 5.5.0 FRBidSheets.php is vulnerable to Blind SQL Injection (Time-based) via the...
High
Unreviewed
CVE-2024-25891
was published
Feb 21, 2024
In the module "Import/Update Bulk Product from any Csv/Excel File Pro" (ba_importer) up to...
Critical
Unreviewed
CVE-2024-25843
was published
Feb 27, 2024
A SQL Injection vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a...
Critical
Unreviewed
CVE-2024-25867
was published
Feb 29, 2024
Customer Support System v1 was discovered to contain a SQL injection vulnerability via the id...
High
Unreviewed
CVE-2023-49968
was published
Mar 5, 2024
SQL Injection vulnerability in Nagios XI 2024R1.01 allows a remote attacker to execute arbitrary...
Critical
Unreviewed
CVE-2024-24401
was published
Feb 26, 2024
SQL injection vulnerability in PMB v.7.4.7 and earlier allows a remote attacker to execute...
High
Unreviewed
CVE-2023-38844
was published
Feb 21, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43965
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43943
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43942
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43918
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43144
was published
Aug 29, 2024
A vulnerability classified as critical has been found in dingfanzu CMS up to...
Moderate
Unreviewed
CVE-2024-8303
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39658
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43132
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39638
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38793
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38693
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-39653
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43941
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43917
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-5057
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-39622
was published
Aug 29, 2024
A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has...
Moderate
Unreviewed
CVE-2024-8301
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39620
was published
Aug 29, 2024
ProTip!
Advisories are also available from the
GraphQL API