Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,748
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

14,420 advisories

Loading
A vulnerability classified as critical has been found in Tongda OA 2017 11.10. Affected is an... Moderate Unreviewed
CVE-2023-5497 was published Oct 10, 2023
SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote... High Unreviewed
CVE-2023-44961 was published Oct 11, 2023
Unauth. SQL Injection (SQLi) vulnerability in MainWP MainWP Broken Links Checker Extension plugin... Critical Unreviewed
CVE-2023-23737 was published Oct 12, 2023
Auth. (subscriber+) SQL Injection (SQLi) vulnerability in MainWP Google Analytics Extension... High Unreviewed
CVE-2023-23651 was published Oct 12, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-5046 was published Oct 12, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-5045 was published Oct 12, 2023
An issue was discovered in /fcgi/scrut_fcgi.fcgi in Plixer Scrutinizer before 19.3.1. The... Critical Unreviewed
CVE-2023-41262 was published Oct 13, 2023
Magento Open Source allows SQL Injection Moderate
CVE-2023-38221 was published for magento/community-edition (Composer) Oct 13, 2023
Magento Open Source allows SQL Injection Moderate
CVE-2023-38249 was published for magento/community-edition (Composer) Oct 13, 2023
Magento Open Source allows SQL Injection Moderate
CVE-2023-38250 was published for magento/community-edition (Composer) Oct 13, 2023
Affected 1E Platform versions have a Blind SQL Injection vulnerability that can lead to arbitrary... Critical Unreviewed
CVE-2023-45162 was published Oct 13, 2023
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the... High Unreviewed
CVE-2023-34976 was published Oct 13, 2023
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the... High Unreviewed
CVE-2023-34975 was published Oct 13, 2023
Multiple improper neutralization of SQL parameters in module AfterMail (aftermailpresta) for... Critical Unreviewed
CVE-2023-30154 was published Oct 14, 2023
A vulnerability classified as critical has been found in SourceCodester Library System 1.0. This... Moderate Unreviewed
CVE-2023-5580 was published Oct 14, 2023
A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1... Moderate Unreviewed
CVE-2023-5587 was published Oct 16, 2023
A vulnerability was found in SourceCodester Judging Management System 1.0. It has been declared... High Unreviewed
CVE-2023-5589 was published Oct 16, 2023
SQL injection in librenms/librenms High
CVE-2023-5591 was published for librenms/librenms (Composer) Oct 16, 2023
SQL Injection in Apache InLong High
CVE-2023-43667 was published for org.apache.inlong:inlong (Maven) Oct 16, 2023
The School Management System WordPress plugin before 2.2.5 uses the WordPress esc_sql() function... High Unreviewed
CVE-2023-4776 was published Oct 16, 2023
The WordPress Online Booking and Scheduling Plugin WordPress plugin before 22.4 does not properly... High Unreviewed
CVE-2023-4691 was published Oct 16, 2023
SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System... Critical Unreviewed
CVE-2023-40852 was published Oct 16, 2023
SQL Injection in create customer group function in EasyUse MailHunter Ultimate 2023 and earlier... High Unreviewed
CVE-2023-34210 was published Oct 17, 2023
In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can... Critical Unreviewed
CVE-2023-45386 was published Oct 17, 2023
D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via ... Critical Unreviewed
CVE-2023-44693 was published Oct 17, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database