GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,971
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,091
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
6,063 advisories
Filter by severity
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the...
High
Unreviewed
CVE-2024-34031
was published
May 3, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-33911
was published
May 2, 2024
SQL Injection vulnerability in Realisation MGSD v.1.0 allows a remote attacker to obtain...
High
Unreviewed
CVE-2024-33292
was published
May 1, 2024
SQL Injection vulnerability in LOGINT LoMag Inventory Management v1.0.20.120 and before allows an...
High
Unreviewed
CVE-2024-32212
was published
May 1, 2024
Wallos before 1.15.3 is vulnerable to SQL Injection via the category and payment parameters to ...
High
Unreviewed
CVE-2024-29320
was published
Apr 30, 2024
SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v....
High
Unreviewed
CVE-2024-31821
was published
Apr 29, 2024
An issue was discovered in Znuny LTS 6.5.1 through 6.5.7 and Znuny 7.0.1 through 7.0.16 where a...
High
Unreviewed
CVE-2024-32493
was published
Apr 29, 2024
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an...
High
Unreviewed
CVE-2024-4309
was published
Apr 29, 2024
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an...
High
Unreviewed
CVE-2024-4307
was published
Apr 29, 2024
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an...
High
Unreviewed
CVE-2024-4308
was published
Apr 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32706
was published
Apr 24, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32710
was published
Apr 24, 2024
LibreNMS vulnerable to a Time-Based Blind SQL injection leads to database extraction
High
CVE-2024-32480
was published
for
librenms/librenms
(Composer)
Apr 22, 2024
LibreNMS vulnerable to SQL injection time-based leads to database extraction
High
CVE-2024-32461
was published
for
librenms/librenms
(Composer)
Apr 22, 2024
SQL Injection vulnerability in autoexpress v.1.3.0 allows attackers to run arbitrary SQL commands...
High
Unreviewed
CVE-2024-30974
was published
Apr 19, 2024
SQL Injection vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary SQL...
High
Unreviewed
CVE-2024-30928
was published
Apr 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32551
was published
Apr 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32602
was published
Apr 18, 2024
A SolarWinds Platform SWQL Injection Vulnerability was identified in the user interface. This...
High
Unreviewed
CVE-2024-29001
was published
Apr 18, 2024
SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL 1.0...
High
Unreviewed
CVE-2024-30983
was published
Apr 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2022-47151
was published
Apr 17, 2024
An SQL injection vulnerability exists in the `delete_discussion()` function of the parisneo...
High
Unreviewed
CVE-2024-1601
was published
Apr 16, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32137
was published
Apr 15, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32139
was published
Apr 15, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-32136
was published
Apr 15, 2024
ProTip!
Advisories are also available from the
GraphQL API