Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,793
Erlang
29
GitHub Actions
16
Go
1,710
Maven
4,947
npm
3,475
NuGet
605
pip
3,001
Pub
10
RubyGems
828
Rust
773
Swift
34
Unreviewed advisories
All unreviewed
5,000+

11,285 advisories

SQL injection vulnerability in Astrotalks affecting version 10/03/2023. This vulnerability could... High Unreviewed
CVE-2024-5523 was published May 31, 2024
TYPO3 CMS Privilege Escalation and SQL Injection High
GHSA-45wj-jv2h-jwrf was published for typo3/cms-core (Composer) May 30, 2024
terminal42/contao-tablelookupwizard possible SQL injection in widget field value Critical
GHSA-7fpj-wc8v-9cgc was published for terminal42/contao-tablelookupwizard (Composer) May 30, 2024
Mocodo vulnerable to SQL injection in `/web/generate.php` Critical
CVE-2024-35374 was published for mocodo (pip) May 28, 2024
silverstripe/subsites Unsafe SQL Query Construction (Safe Data Source) High
GHSA-xc69-p8fc-m6m5 was published for silverstripe/subsites (Composer) May 28, 2024
silverstripe/taxonomy SQL Injection vulnerability High
GHSA-p2v5-xcqm-4fv6 was published for silverstripe/taxonomy (Composer) May 28, 2024
silverstripe/framework has potential SQL Injection vulnerability in PostgreSQL database connector High
GHSA-265q-222x-52m6 was published for silverstripe/framework (Composer) May 28, 2024
silverstripe/framework SQL injection in full text search High
GHSA-xx4r-5265-48j6 was published for silverstripe/framework (Composer) May 27, 2024
Dolibarr vulnerable to SQL Injection Critical
CVE-2024-5315 was published for dolibarr/dolibarr (Composer) May 24, 2024
Dolibarr vulnerable to SQL Injection Critical
CVE-2024-5314 was published for dolibarr/dolibarr (Composer) May 24, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-5240 was published May 23, 2024
A vulnerability, which was classified as critical, was found in Campcodes Complete Web-Based... Moderate Unreviewed
CVE-2024-5238 was published May 23, 2024
A vulnerability, which was classified as critical, has been found in Campcodes Complete Web-Based... Moderate Unreviewed
CVE-2024-5237 was published May 23, 2024
A vulnerability has been found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-5239 was published May 23, 2024
A vulnerability classified as critical has been found in Campcodes Complete Web-Based School... Moderate Unreviewed
CVE-2024-5235 was published May 23, 2024
A vulnerability classified as critical was found in Campcodes Complete Web-Based School... Moderate Unreviewed
CVE-2024-5236 was published May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-5233 was published May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-5234 was published May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0. It has... Moderate Unreviewed
CVE-2024-5232 was published May 23, 2024
A vulnerability was found in Campcodes Complete Web-Based School Management System 1.0 and... Moderate Unreviewed
CVE-2024-5231 was published May 23, 2024
Sante PACS Server PG Patient Query SQL Injection Remote Code Execution Vulnerability. This... Critical Unreviewed
CVE-2023-51637 was published May 22, 2024
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC)... High Unreviewed
CVE-2023-20239 was published May 22, 2024
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC)... High Unreviewed
CVE-2024-20360 was published May 22, 2024
PyMySQL SQL Injection vulnerability Critical
CVE-2024-36039 was published for pymysql (pip) May 21, 2024
An 'SQL Injection' vulnerability, due to improper neutralization of special elements used in SQL... High Unreviewed
CVE-2023-3942 was published May 21, 2024
ProTip! Advisories are also available from the GraphQL API