GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,133
Erlang
29
GitHub Actions
19
Go
1,940
Maven
5,000+
npm
3,677
NuGet
645
pip
3,295
Pub
11
RubyGems
877
Rust
830
Swift
35
Unreviewed advisories
All unreviewed
5,000+
6,273 advisories
Filter by severity
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-49244
was published
Oct 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-49297
was published
Oct 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-49299
was published
Oct 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-47304
was published
Oct 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-47312
was published
Oct 17, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-48043
was published
Oct 17, 2024
An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A
...
High
Unreviewed
CVE-2024-38814
was published
Oct 16, 2024
The Post Grid plugin for WordPress is vulnerable to blind SQL Injection via post metadata in...
High
Unreviewed
CVE-2021-4450
was published
Oct 16, 2024
SQL injection vulnerability in Ajax.php, ForWindow.php, ForExport.php, Modules.php, functions...
High
Unreviewed
CVE-2024-35584
was published
Oct 15, 2024
A SQL Injection vulnerability was found in /password-recovery.php of PHPGurukul User Registration...
High
Unreviewed
CVE-2024-48282
was published
Oct 15, 2024
A SQL Injection vulnerability was found in /search-result.php of PHPGurukul User Registration &...
High
Unreviewed
CVE-2024-48280
was published
Oct 15, 2024
The ee-class from FormosaSoft does not properly validate a specific page parameter, allowing...
High
Unreviewed
CVE-2024-9980
was published
Oct 15, 2024
The specific query functionality in the FlowMaster BPM Plus from NewType does not properly...
High
Unreviewed
CVE-2024-9971
was published
Oct 15, 2024
WebEIP v3.0 from
NewType does not properly validate user input, allowing remote attackers with...
High
Unreviewed
CVE-2024-9968
was published
Oct 15, 2024
Wavelog 1.8.5 allows Gridmap_model.php get_band_confirmed SQL injection via band, sat,...
High
Unreviewed
CVE-2024-48249
was published
Oct 14, 2024
Cloudlog 2.6.15 allows Oqrs.php request_form SQL injection via station_id or callsign.
High
Unreviewed
CVE-2024-48259
was published
Oct 14, 2024
Wavelog 1.8.5 allows Oqrs_model.php get_worked_modes station_id SQL injectioin.
High
Unreviewed
CVE-2024-48257
was published
Oct 14, 2024
Cloudlog 2.6.15 allows Oqrs.php delete_oqrs_line id SQL injection.
High
Unreviewed
CVE-2024-48253
was published
Oct 14, 2024
The WP Post Author – Boost Your Blog's Engagement with Author Box, Social Links, Co-Authors,...
High
Unreviewed
CVE-2024-8757
was published
Oct 12, 2024
An issue was discovered in the centreon-bi-server component in Centreon BI Server 24.04.x before...
High
Unreviewed
CVE-2024-45754
was published
Oct 12, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-48040
was published
Oct 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-48020
was published
Oct 11, 2024
SQL injection vulnerability in employee-management-system-php-and-mysql-free-download.html...
High
Unreviewed
CVE-2024-48813
was published
Oct 11, 2024
The TS Poll – Survey, Versus Poll, Image Poll, Video Poll plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-9022
was published
Oct 10, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-47334
was published
Oct 9, 2024
ProTip!
Advisories are also available from the
GraphQL API