Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,356 advisories

Loading
A vulnerability, which was classified as critical, was found in code-projects Blood Bank System 1... Moderate Unreviewed
CVE-2024-9797 was published Oct 10, 2024
A vulnerability was found in LyLme_spage 1.9.5 and classified as critical. This issue affects... Moderate Unreviewed
CVE-2024-9789 was published Oct 10, 2024
A vulnerability has been found in LyLme_spage 1.9.5 and classified as critical. This... Moderate Unreviewed
CVE-2024-9788 was published Oct 10, 2024
A vulnerability was found in LyLme_spage 1.9.5. It has been classified as critical. Affected is... Moderate Unreviewed
CVE-2024-9790 was published Oct 10, 2024
The SEUR plugin, in its versions prior to 2.5.11, is vulnerable to time-based SQL injection... Critical Unreviewed
CVE-2024-9201 was published Oct 10, 2024
The WP-Advanced-Search WordPress plugin before 3.3.9.2 does not sanitize and escape the t... Moderate Unreviewed
CVE-2024-9796 was published Oct 10, 2024
The TI WooCommerce Wishlist WordPress plugin through 2.8.2 is vulnerable to SQL Injection due to... Moderate Unreviewed
CVE-2024-9156 was published Oct 10, 2024
The TS Poll – Survey, Versus Poll, Image Poll, Video Poll plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-9022 was published Oct 10, 2024
An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated... Critical Unreviewed
CVE-2024-9465 was published Oct 9, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-47334 was published Oct 9, 2024
SQL injection in the admin web console of Ivanti CSA before version 5.0.2 allows a remote... Moderate Unreviewed
CVE-2024-9379 was published Oct 8, 2024
Microsoft Configuration Manager Remote Code Execution Vulnerability Critical Unreviewed
CVE-2024-43468 was published Oct 8, 2024
A SQL injection vulnerability in login portal in AnteeoWMS before v4.7.34 allows unauthenticated... Critical Unreviewed
CVE-2024-44349 was published Oct 8, 2024
The LatePoint plugin for WordPress is vulnerable to Arbitrary User Password Change via SQL... Critical Unreviewed
CVE-2024-8911 was published Oct 8, 2024
SQL injection vulnerability in SOPlanning <1.45, through /soplanning/www/groupe_list.php, in the... Moderate Unreviewed
CVE-2024-9573 was published Oct 7, 2024
SQL injection vulnerability in SOPlanning <1.45, via /soplanning/www/user_groupes.php in the by... Critical Unreviewed
CVE-2024-9574 was published Oct 7, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-47335 was published Oct 7, 2024
A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2024-9560 was published Oct 7, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-47350 was published Oct 6, 2024
Cavok – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Critical Unreviewed
CVE-2024-45249 was published Oct 6, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-47338 was published Oct 6, 2024
A vulnerability was found in ESAFENET CDG V5. It has been rated as critical. Affected by this... Moderate Unreviewed
CVE-2024-9536 was published Oct 5, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-47849 was published Oct 5, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2024-7801 was published Oct 4, 2024
In SonarSource SonarQube 10.4 through 10.5 before 10.6, a vulnerability was discovered in the... Moderate Unreviewed
CVE-2024-47911 was published Oct 4, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database