Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,164 advisories

Loading
Advantech iView ConfigurationServlet SQL Injection Information Disclosure Vulnerability. This... High Unreviewed
CVE-2023-52335 was published Nov 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-7837 was published Nov 22, 2024
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote... High Unreviewed
CVE-2024-52360 was published Nov 19, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-3370 was published Nov 18, 2024
A SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input... High Unreviewed
CVE-2023-2567 was published Sep 19, 2023
A blind SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input... High Unreviewed
CVE-2023-22378 was published Aug 9, 2023
A blind SQL Injection vulnerability in Nozomi Networks Guardian and CMC, due to improper input... High Unreviewed
CVE-2023-23574 was published Aug 9, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-52435 was published Nov 18, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-52436 was published Nov 18, 2024
Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the... High Unreviewed
CVE-2024-49574 was published Nov 18, 2024
The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time... High Unreviewed
CVE-2024-9887 was published Nov 16, 2024
The Blogger 301 Redirect plugin for WordPress is vulnerable to blind time-based SQL Injection via... High Unreviewed
CVE-2024-10645 was published Nov 16, 2024
SQL injection vulnerability in the module "Products Alert" (productsalert) before 1.7.4 from... High Unreviewed
CVE-2024-36683 was published Jun 25, 2024
A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0... High Unreviewed
CVE-2024-50972 was published Nov 13, 2024
A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project... High Unreviewed
CVE-2024-50970 was published Nov 13, 2024
A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0... High Unreviewed
CVE-2024-50971 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32844 was published Nov 13, 2024
Improper neutralization of special elements used in an SQL command ('SQL Injection') in some... High Unreviewed
CVE-2024-39368 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32839 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32841 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32847 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-37376 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34780 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34784 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34782 was published Nov 13, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database