GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
12,741 advisories
Filter by severity
A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1...
Moderate
Unreviewed
CVE-2023-5587
was published
Oct 16, 2023
A vulnerability was found in SourceCodester Judging Management System 1.0. It has been declared...
High
Unreviewed
CVE-2023-5589
was published
Oct 16, 2023
SQL injection in librenms/librenms
High
CVE-2023-5591
was published
for
librenms/librenms
(Composer)
Oct 16, 2023
SQL Injection in Apache InLong
High
CVE-2023-43667
was published
for
org.apache.inlong:inlong
(Maven)
Oct 16, 2023
The School Management System WordPress plugin before 2.2.5 uses the WordPress esc_sql() function...
High
Unreviewed
CVE-2023-4776
was published
Oct 16, 2023
The WordPress Online Booking and Scheduling Plugin WordPress plugin before 22.4 does not properly...
High
Unreviewed
CVE-2023-4691
was published
Oct 16, 2023
SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System...
Critical
Unreviewed
CVE-2023-40852
was published
Oct 16, 2023
In the module "PireosPay" (pireospay) before version 1.7.10 from 01generator.com for PrestaShop,...
High
Unreviewed
CVE-2023-45375
was published
Oct 17, 2023
In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can...
Critical
Unreviewed
CVE-2023-45386
was published
Oct 17, 2023
SQL Injection in create customer group function in EasyUse MailHunter Ultimate 2023 and earlier...
High
Unreviewed
CVE-2023-34210
was published
Oct 17, 2023
D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via ...
Critical
Unreviewed
CVE-2023-44693
was published
Oct 17, 2023
D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via ...
Critical
Unreviewed
CVE-2023-44694
was published
Oct 17, 2023
nocodb SQL Injection vulnerability
Moderate
CVE-2023-43794
was published
for
nocodb
(npm)
Oct 17, 2023
lylme_spage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip...
Critical
Unreviewed
CVE-2023-45951
was published
Oct 17, 2023
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the...
Critical
Unreviewed
CVE-2023-46007
was published
Oct 18, 2023
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the...
Critical
Unreviewed
CVE-2023-46006
was published
Oct 18, 2023
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the...
Critical
Unreviewed
CVE-2023-46005
was published
Oct 18, 2023
The iPanorama 360 – WordPress Virtual Tour Builder plugin for WordPress is vulnerable to SQL...
Moderate
Unreviewed
CVE-2023-5336
was published
Oct 19, 2023
The ChatBot plugin for WordPress is vulnerable to SQL Injection via the $strid parameter in...
High
Unreviewed
CVE-2023-5204
was published
Oct 19, 2023
In the module "Rotator Img" (posrotatorimg) in versions at least up to 1.1 from PosThemes for...
Critical
Unreviewed
CVE-2023-45379
was published
Oct 19, 2023
In the module "Creative Popup" (creativepopup) up to version 1.6.9 from WebshopWorks for...
Critical
Unreviewed
CVE-2023-45381
was published
Oct 19, 2023
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" (hicarouselspack) for...
Critical
Unreviewed
CVE-2023-45376
was published
Oct 19, 2023
DM Concept configurator before v4.9.4 was discovered to contain a SQL injection vulnerability via...
Critical
Unreviewed
CVE-2023-43986
was published
Oct 19, 2023
The Slimstat Analytics plugin for WordPress is vulnerable to SQL Injection via the plugin's...
Moderate
Unreviewed
CVE-2023-4598
was published
Oct 20, 2023
The Cyr to Lat plugin for WordPress is vulnerable to authenticated SQL Injection via the ...
High
Unreviewed
CVE-2022-4290
was published
Oct 20, 2023
ProTip!
Advisories are also available from the
GraphQL API