GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+
11,285 advisories
Filter by severity
SQL injection vulnerability in Astrotalks affecting version 10/03/2023. This vulnerability could...
High
Unreviewed
CVE-2024-5523
was published
May 31, 2024
TYPO3 CMS Privilege Escalation and SQL Injection
High
GHSA-45wj-jv2h-jwrf
was published
for
typo3/cms-core
(Composer)
May 30, 2024
terminal42/contao-tablelookupwizard possible SQL injection in widget field value
Critical
GHSA-7fpj-wc8v-9cgc
was published
for
terminal42/contao-tablelookupwizard
(Composer)
May 30, 2024
Mocodo vulnerable to SQL injection in `/web/generate.php`
Critical
CVE-2024-35374
was published
for
mocodo
(pip)
May 28, 2024
silverstripe/subsites Unsafe SQL Query Construction (Safe Data Source)
High
GHSA-xc69-p8fc-m6m5
was published
for
silverstripe/subsites
(Composer)
May 28, 2024
silverstripe/taxonomy SQL Injection vulnerability
High
GHSA-p2v5-xcqm-4fv6
was published
for
silverstripe/taxonomy
(Composer)
May 28, 2024
silverstripe/framework has potential SQL Injection vulnerability in PostgreSQL database connector
High
GHSA-265q-222x-52m6
was published
for
silverstripe/framework
(Composer)
May 28, 2024
silverstripe/framework SQL injection in full text search
High
GHSA-xx4r-5265-48j6
was published
for
silverstripe/framework
(Composer)
May 27, 2024
Dolibarr vulnerable to SQL Injection
Critical
CVE-2024-5315
was published
for
dolibarr/dolibarr
(Composer)
May 24, 2024
Dolibarr vulnerable to SQL Injection
Critical
CVE-2024-5314
was published
for
dolibarr/dolibarr
(Composer)
May 24, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-5240
was published
May 23, 2024
A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based...
Moderate
Unreviewed
CVE-2024-5238
was published
May 23, 2024
A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based...
Moderate
Unreviewed
CVE-2024-5237
was published
May 23, 2024
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-5239
was published
May 23, 2024
A vulnerability classified as critical has been found in Campcodes Complete Web-Based School...
Moderate
Unreviewed
CVE-2024-5235
was published
May 23, 2024
A vulnerability classified as critical was found in Campcodes Complete Web-Based School...
Moderate
Unreviewed
CVE-2024-5236
was published
May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has...
Moderate
Unreviewed
CVE-2024-5233
was published
May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has...
Moderate
Unreviewed
CVE-2024-5234
was published
May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has...
Moderate
Unreviewed
CVE-2024-5232
was published
May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and...
Moderate
Unreviewed
CVE-2024-5231
was published
May 23, 2024
Sante PACS Server PG Patient Query SQL Injection Remote Code Execution Vulnerability. This...
Critical
Unreviewed
CVE-2023-51637
was published
May 22, 2024
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC)...
High
Unreviewed
CVE-2023-20239
was published
May 22, 2024
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC)...
High
Unreviewed
CVE-2024-20360
was published
May 22, 2024
PyMySQL SQL Injection vulnerability
Critical
CVE-2024-36039
was published
for
pymysql
(pip)
May 21, 2024
An 'SQL Injection' vulnerability, due to improper neutralization of special elements used in SQL...
High
Unreviewed
CVE-2023-3942
was published
May 21, 2024
ProTip!
Advisories are also available from the
GraphQL API