GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,980
Erlang
29
GitHub Actions
16
Go
1,769
Maven
4,994
npm
3,540
NuGet
616
pip
3,113
Pub
10
RubyGems
838
Rust
787
Swift
34
Unreviewed advisories
All unreviewed
5,000+
11,572 advisories
Filter by severity
A vulnerability was found in itsourcecode Simple Task List 1.0. It has been classified as...
Moderate
Unreviewed
CVE-2024-6808
was published
Jul 17, 2024
A vulnerability has been found in itsourcecode Document Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-6803
was published
Jul 17, 2024
A vulnerability, which was classified as critical, was found in SourceCodester Computer...
Moderate
Unreviewed
CVE-2024-6802
was published
Jul 17, 2024
Apache Superset vulnerable to improper SQL authorization
Moderate
CVE-2024-39887
was published
for
apache-superset
(pip)
Jul 16, 2024
In streampark-console the list pages(e.g: application pages), users can sort page by field. This...
Unknown
Unreviewed
CVE-2023-52290
was published
Jul 16, 2024
The WP Hotel Booking plugin for WordPress is vulnerable to SQL Injection via the 'room_type'...
Critical
Unreviewed
CVE-2024-3605
was published
Jun 20, 2024
The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for...
Critical
Unreviewed
CVE-2024-4742
was published
Jun 20, 2024
The Custom Field Suite plugin for WordPress is vulnerable to SQL Injection via the the 'Term'...
High
Unreviewed
CVE-2024-3561
was published
Jun 20, 2024
A vulnerability classified as critical has been found in code-projects Simple Ticket Booking 1.0....
Moderate
Unreviewed
CVE-2024-6745
was published
Jul 15, 2024
AguardNet's Space Management System does not properly validate user input, allowing...
Critical
Unreviewed
CVE-2024-6743
was published
Jul 15, 2024
A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It...
Moderate
Unreviewed
CVE-2024-6736
was published
Jul 15, 2024
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified...
Moderate
Unreviewed
CVE-2024-6734
was published
Jul 15, 2024
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-6733
was published
Jul 15, 2024
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared...
Moderate
Unreviewed
CVE-2024-6735
was published
Jul 15, 2024
A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk...
Moderate
Unreviewed
CVE-2024-6731
was published
Jul 15, 2024
A vulnerability classified as critical was found in SourceCodester Student Study Center Desk...
Moderate
Unreviewed
CVE-2024-6732
was published
Jul 15, 2024
A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It...
Moderate
Unreviewed
CVE-2024-6729
was published
Jul 14, 2024
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified...
Moderate
Unreviewed
CVE-2024-6728
was published
Jul 14, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability...
Critical
Unreviewed
CVE-2024-40539
was published
Jul 12, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability...
Critical
Unreviewed
CVE-2024-40541
was published
Jul 12, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability...
Critical
Unreviewed
CVE-2024-40542
was published
Jul 12, 2024
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability...
Critical
Unreviewed
CVE-2024-40540
was published
Jul 12, 2024
SQL Injection in the KubeClarity REST API
Moderate
CVE-2024-39909
was published
for
github.com/openclarity/kubeclarity/backend
(Go)
Jul 12, 2024
VMware Aria Automation does not apply correct input validation which allows for SQL-injection in...
High
Unreviewed
CVE-2024-22280
was published
Jul 11, 2024
SQL injection vulnerability in processscore.php in Learning Management System Project In PHP With...
Critical
Unreviewed
CVE-2024-37870
was published
Jul 9, 2024
ProTip!
Advisories are also available from the
GraphQL API