Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,768
Maven
4,991
npm
3,537
NuGet
616
pip
3,107
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,254 advisories

Loading
A vulnerability, which was classified as critical, has been found in SourceCodester Online Flight... Critical Unreviewed
CVE-2023-0245 was published Jan 12, 2023
A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function... Critical Unreviewed
CVE-2023-0243 was published Jan 12, 2023
A vulnerability, which was classified as critical, has been found in pointhi searx_stats. This... Critical Unreviewed
CVE-2014-125077 was published Jan 15, 2023
The Fontsy WordPress plugin through 1.8.6 does not properly sanitize and escape a parameter... Critical Unreviewed
CVE-2022-4447 was published Jan 16, 2023
A vulnerability was found in 2071174A vinylmap. It has been classified as critical. Affected is... Critical Unreviewed
CVE-2015-10056 was published Jan 16, 2023
A vulnerability, which was classified as critical, has been found in risheesh debutsav. This... Critical Unreviewed
CVE-2014-125081 was published Jan 18, 2023
A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as... Critical Unreviewed
CVE-2015-10064 was published Jan 17, 2023
A vulnerability classified as critical has been found in PrivateSky apersistence. This affects an... Critical Unreviewed
CVE-2017-20171 was published Jan 18, 2023
A vulnerability was found in nivit redports. It has been declared as critical. This vulnerability... Critical Unreviewed
CVE-2014-125082 was published Jan 18, 2023
A vulnerability was found in PictureThisWebServer and classified as critical. This issue affects... Critical Unreviewed
CVE-2015-10055 was published Jan 16, 2023
** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in... Critical Unreviewed
CVE-2010-10007 was published Jan 18, 2023
There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability... Critical Unreviewed
CVE-2022-46071 was published Dec 14, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_mod.php. Critical Unreviewed
CVE-2022-24603 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_mod.php. Critical Unreviewed
CVE-2022-24604 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php. Critical Unreviewed
CVE-2022-24606 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php. Critical Unreviewed
CVE-2022-24605 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/news_ok.php. Critical Unreviewed
CVE-2022-24607 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection through /admin/login.php. An attacker can log in to the... Critical Unreviewed
CVE-2022-24600 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/news_mod.php. Critical Unreviewed
CVE-2022-24602 was published Mar 11, 2022
The CommonsBooking WordPress plugin before 2.6.8 does not sanitise and escape the location... Critical Unreviewed
CVE-2022-0658 was published Mar 15, 2022
The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the... Critical Unreviewed
CVE-2022-0169 was published Mar 15, 2022
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-25494 was published Mar 16, 2022
HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in... Critical Unreviewed
CVE-2022-25492 was published Mar 16, 2022
The MOLIE WordPress plugin through 0.5 does not validate and escape a post parameter before using... Critical Unreviewed
CVE-2021-25007 was published Mar 15, 2022
Online Project Time Management System v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-26293 was published Mar 17, 2022
ProTip! Advisories are also available from the GraphQL API