GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,765
Maven
4,990
npm
3,536
NuGet
616
pip
3,105
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
5,897 advisories
Filter by severity
NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-27358
was published
May 3, 2024
NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code...
High
Unreviewed
CVE-2023-38099
was published
May 3, 2024
NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation...
High
Unreviewed
CVE-2023-38100
was published
May 3, 2024
NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code...
High
Unreviewed
CVE-2023-44450
was published
May 3, 2024
NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation...
High
Unreviewed
CVE-2023-44449
was published
May 3, 2024
SQL injection vulnerability in /model/delete_student_grade_subject.php in campcodes Complete Web...
High
Unreviewed
CVE-2024-33406
was published
May 6, 2024
SQL injection vulnerability in /model/delete_range_grade.php in campcodes Complete Web-Based...
High
Unreviewed
CVE-2024-33410
was published
May 6, 2024
A SQL injection vulnerability in /model/add_student_first_payment.php in campcodes Complete Web...
High
Unreviewed
CVE-2024-33404
was published
May 6, 2024
SQL injection vulnerability in add_friends.php in campcodes Complete Web-Based School Management...
High
Unreviewed
CVE-2024-33405
was published
May 6, 2024
A SQL injection vulnerability in ZI PT Solusi Usaha Mudah Analytic Data Query module (aka...
High
Unreviewed
CVE-2024-34533
was published
May 6, 2024
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module (aka...
High
Unreviewed
CVE-2024-34534
was published
May 6, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-34386
was published
May 6, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-34412
was published
May 6, 2024
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter...
High
Unreviewed
CVE-2024-33144
was published
May 7, 2024
J2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter...
High
Unreviewed
CVE-2024-33149
was published
May 7, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the...
High
Unreviewed
CVE-2024-25512
was published
May 7, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the file_id...
High
Unreviewed
CVE-2024-25513
was published
May 7, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the...
High
Unreviewed
CVE-2024-25515
was published
May 8, 2024
RuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the...
High
Unreviewed
CVE-2024-25526
was published
May 8, 2024
Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via book.php?bookisbn=.
High
Unreviewed
CVE-2024-28279
was published
May 14, 2024
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An...
High
Unreviewed
CVE-2024-32737
was published
May 14, 2024
A sql injection vulnerability exists in CyberPower PowerPanel Enterprise prior to v2.8.3. An...
High
Unreviewed
CVE-2024-32738
was published
May 14, 2024
Sourcecodester Human Resource Management System 1.0 is vulnerable to SQL Injection via the 'leave...
High
Unreviewed
CVE-2024-34220
was published
May 14, 2024
The access control in CemiPark software does not properly validate user-entered data, which...
High
Unreviewed
CVE-2024-4423
was published
May 14, 2024
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected...
High
Unreviewed
CVE-2024-27940
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API