Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,051
Erlang
29
GitHub Actions
19
Go
1,887
Maven
5,000+
npm
3,602
NuGet
638
pip
3,205
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

12,125 advisories

Loading
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. Critical Unreviewed
CVE-2024-41370 was published Aug 29, 2024
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. Critical Unreviewed
CVE-2024-41372 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43943 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43965 was published Aug 29, 2024
A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has... Moderate Unreviewed
CVE-2024-8302 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-38693 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43132 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-39620 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-39622 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43941 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-38793 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-5057 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-39638 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-38795 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43917 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-39653 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-39658 was published Aug 29, 2024
A vulnerability classified as critical has been found in dingfanzu CMS up to... Moderate Unreviewed
CVE-2024-8303 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43144 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-43942 was published Aug 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-43918 was published Aug 29, 2024
A vulnerability was found in dingfanzu CMS up to 29d67d9044f6f93378e6eb6ff92272217ff7225c. It has... Moderate Unreviewed
CVE-2024-8301 was published Aug 29, 2024
The Front End Users plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order... High Unreviewed
CVE-2024-7607 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29724 was published Aug 29, 2024
SQL injection vulnerabilities in SportsNET affecting version 4.0.1. These vulnerabilities could... Critical Unreviewed
CVE-2024-29723 was published Aug 29, 2024
ProTip! Advisories are also available from the GraphQL API