GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,065
Erlang
29
GitHub Actions
19
Go
1,890
Maven
5,000+
npm
3,622
NuGet
638
pip
3,235
Pub
10
RubyGems
857
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
12,172 advisories
Filter by severity
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43918
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43144
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39620
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-38795
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-5057
was published
Aug 29, 2024
A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has...
Moderate
Unreviewed
CVE-2024-8302
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43917
was published
Aug 29, 2024
A vulnerability classified as critical has been found in dingfanzu CMS up to...
Moderate
Unreviewed
CVE-2024-8303
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-39622
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39658
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43132
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-39638
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38793
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-38693
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-39653
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-43941
was published
Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-43942
was published
Aug 29, 2024
A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has...
Moderate
Unreviewed
CVE-2024-8301
was published
Aug 29, 2024
The Front End Users plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order...
High
Unreviewed
CVE-2024-7607
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29725
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29727
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29729
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29724
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29728
was published
Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could...
Critical
Unreviewed
CVE-2024-29726
was published
Aug 29, 2024
ProTip!
Advisories are also available from the
GraphQL API