Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,248
Erlang
31
GitHub Actions
21
Go
2,012
Maven
5,000+
npm
3,720
NuGet
662
pip
3,393
Pub
11
RubyGems
889
Rust
852
Swift
36
Unreviewed advisories
All unreviewed
5,000+

6,377 advisories

Loading
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46906 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46908 was published Dec 2, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-53792 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46905 was published Dec 2, 2024
In WhatsUp Gold versions released before 2024.0.1, a SQL Injection vulnerability allows an... High Unreviewed
CVE-2024-46907 was published Dec 2, 2024
The 'Project Manager' WordPress Plugin is affected by an authenticated SQL injection... High Unreviewed
CVE-2024-12015 was published Dec 2, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-53783 was published Nov 30, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-52495 was published Nov 28, 2024
Querydsl vulnerable to HQL injection trough orderBy High
CVE-2024-49203 was published for com.querydsl:querydsl-apt (Maven) Nov 27, 2024
CSIRTTrizna
A SQL Injection vulnerability was found in /covid-tms/password-recovery.php in PHPGurukul COVID... High Unreviewed
CVE-2024-53603 was published Nov 27, 2024
The Security & Malware scan by CleanTalk plugin for WordPress is vulnerable to unauthorized SQL... High Unreviewed
CVE-2024-10570 was published Nov 26, 2024
An issue was discovered in Centreon centreon-open-tickets 24.10.x before 24.10.0, 24.04.x before... High Unreviewed
CVE-2024-45756 was published Nov 25, 2024
An issue was discovered in Centreon centreon-dsm-server 24.10.x before 24.10.0, 24.04.x before 24... High Unreviewed
CVE-2024-45755 was published Nov 25, 2024
Advantech iView ConfigurationServlet SQL Injection Information Disclosure Vulnerability. This... High Unreviewed
CVE-2023-52335 was published Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-7837 was published Nov 22, 2024
Duplicate Advisory: Querydsl SQL/HQL injection High
GHSA-wpvf-5mc3-hv6m was published for com.querydsl:querydsl-apt (Maven) Nov 20, 2024 withdrawn
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote... High Unreviewed
CVE-2024-52360 was published Nov 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-52435 was published Nov 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-52436 was published Nov 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-3370 was published Nov 18, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the... High Unreviewed
CVE-2024-49574 was published Nov 18, 2024
The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time... High Unreviewed
CVE-2024-9887 was published Nov 16, 2024
The Blogger 301 Redirect plugin for WordPress is vulnerable to blind time-based SQL Injection via... High Unreviewed
CVE-2024-10645 was published Nov 16, 2024
Improper neutralization of special elements used in an SQL command ('SQL Injection') in some... High Unreviewed
CVE-2024-39368 was published Nov 13, 2024
A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0... High Unreviewed
CVE-2024-50972 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database