GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,029
Erlang
29
GitHub Actions
16
Go
1,833
Maven
5,000+
npm
3,573
NuGet
632
pip
3,160
Pub
10
RubyGems
847
Rust
798
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,324 advisories
Filter by severity
SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote...
Critical
Unreviewed
CVE-2024-28556
was published
Apr 15, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-32128
was published
Apr 15, 2024
SQL Injection Vulnerability has been found on OpenGnsys product affecting version 1.1.1d (Espeto)...
Critical
Unreviewed
CVE-2024-3704
was published
Apr 12, 2024
Sourcecodester Loan Management System v1.0 is vulnerable to SQL Injection via the "password"...
Critical
Unreviewed
CVE-2024-31678
was published
Apr 11, 2024
SQL Injection vulnerability in PHPGurukul Men Salon Management System v.2.0, allows remote...
Critical
Unreviewed
CVE-2024-30998
was published
Apr 3, 2024
The LayerSlider plugin for WordPress is vulnerable to SQL Injection via the ls_get_popup_markup...
Critical
Unreviewed
CVE-2024-2879
was published
Apr 3, 2024
Sante PACS Server Token Endpoint SQL Injection Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2024-1863
was published
Apr 2, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-30502
was published
Mar 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-23538
was published
Mar 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-30498
was published
Mar 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-30490
was published
Mar 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2023-6191
was published
Mar 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2023-6173
was published
Mar 27, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2023-28787
was published
Mar 26, 2024
SQL Injection vulnerability in Razor 0.8.0 allows a remote attacker to escalate privileges via...
Critical
Unreviewed
CVE-2024-28421
was published
Mar 26, 2024
The delete admin users function of SourceCodester PHP Task Management System 1.0 is vulnerable to...
Critical
Unreviewed
CVE-2024-29303
was published
Mar 26, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-2865
was published
Mar 25, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the ...
Critical
Unreviewed
CVE-2024-2724
was published
Mar 22, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxConfigTotem.php, in the 'id'...
Critical
Unreviewed
CVE-2024-2722
was published
Mar 22, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxSubServicios.php, in the ...
Critical
Unreviewed
CVE-2024-2723
was published
Mar 22, 2024
SQL injection vulnerability in SeaCMS version 12.9, allows remote unauthenticated attackers to...
Critical
Unreviewed
CVE-2024-29275
was published
Mar 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-27956
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/reports...
Critical
Unreviewed
CVE-2024-29876
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments...
Critical
Unreviewed
CVE-2024-29871
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments...
Critical
Unreviewed
CVE-2024-29870
was published
Mar 21, 2024
ProTip!
Advisories are also available from the
GraphQL API