GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
12,193 advisories
Filter by severity
A vulnerability classified as critical has been found in SourceCodester Food Ordering Management...
Moderate
Unreviewed
CVE-2024-8557
was published
Sep 7, 2024
An SQL Injection vulnerability exists in Sourcecodester Employee and Visitor Gate Pass Logging...
Critical
Unreviewed
CVE-2021-46309
was published
Jan 22, 2022
The Pinpoint Booking System – #1 WordPress Booking Plugin plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-7112
was published
Sep 7, 2024
SQL Injection vulnerability in ECshop 4.x allows an attacker to obtain sensitive information via...
High
Unreviewed
CVE-2024-31025
was published
Apr 4, 2024
SQL Injection in Cloud Native Computing Foundation Harbor
High
CVE-2019-19029
was published
for
github.com/goharbor/harbor
(Go)
May 18, 2021
SQL Injection in the KubeClarity REST API
Moderate
CVE-2024-39909
was published
for
github.com/openclarity/kubeclarity/backend
(Go)
Jul 12, 2024
SQL injection in github.com/stashapp/stash
Critical
CVE-2024-32231
was published
for
github.com/stashapp/stash
(Go)
Aug 15, 2024
SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an...
Critical
Unreviewed
CVE-2024-33266
was published
Apr 29, 2024
SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL 1.0...
Critical
Unreviewed
CVE-2024-30980
was published
Apr 17, 2024
Sourcecodester Simple Forum Website v1.0 has a SQL injection vulnerability in /php-sqlite-forum/...
High
Unreviewed
CVE-2024-44739
was published
Sep 6, 2024
A vulnerability classified as critical has been found in itsourcecode Student Management System 1...
High
Unreviewed
CVE-2024-6191
was published
Jun 20, 2024
A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as...
High
Unreviewed
CVE-2024-6253
was published
Jun 22, 2024
A vulnerability classified as critical was found in itsourcecode Loan Management System 1.0. This...
High
Unreviewed
CVE-2024-6192
was published
Jun 20, 2024
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the...
High
Unreviewed
CVE-2023-50360
was published
Sep 6, 2024
Student Information Chatbot a0196ab allows SQL injection via the username to the login function...
Unknown
Unreviewed
CVE-2024-28816
was published
Mar 11, 2024
The LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is...
High
Unreviewed
CVE-2024-7349
was published
Sep 6, 2024
SQL Injection vulnerability in ESAFENET CDG 5.6 and before allows an attacker to execute...
Critical
Unreviewed
CVE-2024-42885
was published
Sep 5, 2024
RuoYi CMS v4.7.9 was discovered to contain a SQL injection vulnerability via the job_id parameter...
Critical
Unreviewed
CVE-2024-42913
was published
Aug 26, 2024
Sourcecodehero Event Management System1.0 is vulnerable to SQL Injection via the parameter ...
High
Unreviewed
CVE-2024-44727
was published
Sep 5, 2024
FlyCASS CASS and KCM systems did not correctly filter SQL queries, which
made them vulnerable to...
Critical
Unreviewed
CVE-2024-8395
was published
Sep 5, 2024
A SQL injection vulnerability in the poll component in SkySystem Arfa-CMS before 5.1.3124 allows...
Critical
Unreviewed
CVE-2024-45265
was published
Aug 26, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-7078
was published
Sep 4, 2024
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via...
High
Unreviewed
CVE-2024-44587
was published
Sep 5, 2024
SQL injection vulnerability, by which an attacker could send a specially designed query through...
Critical
Unreviewed
CVE-2024-8464
was published
Sep 5, 2024
SQL injection vulnerability, by which an attacker could send a specially designed query through...
Critical
Unreviewed
CVE-2024-8467
was published
Sep 5, 2024
ProTip!
Advisories are also available from the
GraphQL API