GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,992
Erlang
29
GitHub Actions
16
Go
1,782
Maven
5,000+
npm
3,544
NuGet
619
pip
3,134
Pub
10
RubyGems
838
Rust
795
Swift
34
Unreviewed advisories
All unreviewed
5,000+
11,631 advisories
Filter by severity
The query functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation...
Critical
Unreviewed
CVE-2024-7202
was published
Jul 29, 2024
The login functionality of WinMatrix3 Web package from Simopro Technology lacks proper validation...
Critical
Unreviewed
CVE-2024-7201
was published
Jul 29, 2024
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-7168
was published
Jul 28, 2024
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-7167
was published
Jul 28, 2024
A vulnerability has been found in SourceCodester School Fees Payment System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7164
was published
Jul 28, 2024
A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been...
Moderate
Unreviewed
CVE-2024-7166
was published
Jul 28, 2024
A vulnerability was found in SourceCodester School Fees Payment System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-7165
was published
Jul 28, 2024
A vulnerability, which was classified as critical, has been found in PHPGurukul News Portal 4.1....
Moderate
Unreviewed
CVE-2024-3768
was published
Apr 15, 2024
Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the...
High
Unreviewed
CVE-2024-38871
was published
Jul 26, 2024
Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the...
High
Unreviewed
CVE-2024-38872
was published
Jul 26, 2024
CampCodes Supplier Management System v1.0 is vulnerable to SQL injection via...
Critical
Unreviewed
CVE-2024-41551
was published
Jul 24, 2024
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could...
Moderate
Unreviewed
CVE-2024-40689
was published
Jul 26, 2024
A vulnerability classified as critical has been found in MD-MAFUJUL-HASAN Online-Payroll...
Moderate
Unreviewed
CVE-2024-7117
was published
Jul 26, 2024
A vulnerability, which was classified as critical, has been found in MD-MAFUJUL-HASAN Online...
Moderate
Unreviewed
CVE-2024-7119
was published
Jul 26, 2024
A vulnerability classified as critical was found in MD-MAFUJUL-HASAN Online-Payroll-Management...
Moderate
Unreviewed
CVE-2024-7118
was published
Jul 26, 2024
A vulnerability was found in Tianchoy Blog up to 1.8.8. It has been classified as critical. This...
Moderate
Unreviewed
CVE-2024-7114
was published
Jul 26, 2024
A vulnerability was found in MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911. It...
Moderate
Unreviewed
CVE-2024-7116
was published
Jul 26, 2024
A vulnerability was found in MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911. It...
Moderate
Unreviewed
CVE-2024-7115
was published
Jul 26, 2024
A vulnerability classified as critical has been found in ForIP Tecnologia Administração PABX 1.x....
Moderate
Unreviewed
CVE-2024-7105
was published
Jul 25, 2024
A vulnerability, which was classified as critical, has been found in ForIP Tecnologia...
Moderate
Unreviewed
CVE-2024-7101
was published
Jul 25, 2024
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as...
Moderate
Unreviewed
CVE-2024-7081
was published
Jul 24, 2024
A vulnerability, which was classified as critical, has been found in SourceCodester Employee and...
Moderate
Unreviewed
CVE-2024-7069
was published
Jul 24, 2024
The Icegram Express plugin for WordPress is vulnerable to SQL Injection via the ‘options[list_id]...
High
Unreviewed
CVE-2024-4845
was published
Jun 12, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38708
was published
Jul 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-38773
was published
Jul 22, 2024
ProTip!
Advisories are also available from the
GraphQL API