Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,076
Erlang
29
GitHub Actions
19
Go
1,895
Maven
5,000+
npm
3,630
NuGet
638
pip
3,244
Pub
10
RubyGems
862
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,182 advisories

Loading
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-5958 was published Sep 18, 2024
SQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code... Critical Unreviewed
CVE-2024-44542 was published Sep 18, 2024
SQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can... High Unreviewed
CVE-2024-42404 was published Sep 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43978 was published Sep 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43969 was published Sep 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-44004 was published Sep 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43976 was published Sep 18, 2024
A vulnerability has been found in CodeCanyon RISE Ultimate Project Manager 3.7.0 and classified... Moderate Unreviewed
CVE-2024-8945 was published Sep 17, 2024
A vulnerability, which was classified as critical, was found in code-projects Hospital Management... Moderate Unreviewed
CVE-2024-8944 was published Sep 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-6401 was published Sep 16, 2024
A vulnerability was found in code-projects Crud Operation System 1.0. It has been rated as... Moderate Unreviewed
CVE-2024-8868 was published Sep 16, 2024
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to SQL... Critical Unreviewed
CVE-2024-8669 was published Sep 16, 2024
A vulnerability classified as critical was found in QDocs Smart School Management System 7.0.0.... Moderate Unreviewed
CVE-2024-8784 was published Sep 13, 2024
SQL Injection vulnerability in Best Free Law Office Management Software-v1.0 allows an attacker... Critical Unreviewed
CVE-2024-44430 was published Sep 13, 2024
A vulnerability was found in code-projects Crud Operation System 1.0. It has been classified as... Moderate Unreviewed
CVE-2024-8762 was published Sep 13, 2024
ORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2024-34334 was published Sep 12, 2024
SQL injection vulnerability in idoit pro version 28. This vulnerability could allow an attacker... High Unreviewed
CVE-2024-8749 was published Sep 12, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the... Critical Unreviewed
CVE-2024-8522 was published Sep 12, 2024
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to SQL Injection via the... Critical Unreviewed
CVE-2024-8529 was published Sep 12, 2024
A vulnerability classified as critical has been found in SourceCodester Best House Rental... Moderate Unreviewed
CVE-2024-8709 was published Sep 12, 2024
A vulnerability classified as critical was found in code-projects Inventory Management 1.0.... Moderate Unreviewed
CVE-2024-8710 was published Sep 12, 2024
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a... Critical Unreviewed
CVE-2024-32842 was published Sep 12, 2024
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a... Critical Unreviewed
CVE-2024-32848 was published Sep 12, 2024
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a... Critical Unreviewed
CVE-2024-32846 was published Sep 12, 2024
An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a... Critical Unreviewed
CVE-2024-32843 was published Sep 12, 2024
ProTip! Advisories are also available from the GraphQL API