Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

12,684 advisories

Loading
A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1... Moderate Unreviewed
CVE-2023-5587 was published Oct 16, 2023
A vulnerability was found in SourceCodester Judging Management System 1.0. It has been declared... High Unreviewed
CVE-2023-5589 was published Oct 16, 2023
SQL injection in librenms/librenms High
CVE-2023-5591 was published for librenms/librenms (Composer) Oct 16, 2023
SQL Injection in Apache InLong High
CVE-2023-43667 was published for org.apache.inlong:inlong (Maven) Oct 16, 2023
The WordPress Online Booking and Scheduling Plugin WordPress plugin before 22.4 does not properly... High Unreviewed
CVE-2023-4691 was published Oct 16, 2023
The School Management System WordPress plugin before 2.2.5 uses the WordPress esc_sql() function... High Unreviewed
CVE-2023-4776 was published Oct 16, 2023
SQL Injection vulnerability in Phpgurukul User Registration & Login and User Management System... Critical Unreviewed
CVE-2023-40852 was published Oct 16, 2023
In the module "PireosPay" (pireospay) before version 1.7.10 from 01generator.com for PrestaShop,... High Unreviewed
CVE-2023-45375 was published Oct 17, 2023
SQL Injection in create customer group function in EasyUse MailHunter Ultimate 2023 and earlier... High Unreviewed
CVE-2023-34210 was published Oct 17, 2023
In the module extratabspro before version 2.2.8 from MyPresta.eu for PrestaShop, a guest can... Critical Unreviewed
CVE-2023-45386 was published Oct 17, 2023
D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via ... Critical Unreviewed
CVE-2023-44693 was published Oct 17, 2023
D-Link Online behavior audit gateway DAR-7000 V31R02B1413C is vulnerable to SQL Injection via ... Critical Unreviewed
CVE-2023-44694 was published Oct 17, 2023
nocodb SQL Injection vulnerability Moderate
CVE-2023-43794 was published for nocodb (npm) Oct 17, 2023
sylwia-budzynska
lylme_spage v1.7.0 was discovered to contain a SQL injection vulnerability via the $userip... Critical Unreviewed
CVE-2023-45951 was published Oct 17, 2023
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the... Critical Unreviewed
CVE-2023-46007 was published Oct 18, 2023
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the... Critical Unreviewed
CVE-2023-46005 was published Oct 18, 2023
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the... Critical Unreviewed
CVE-2023-46006 was published Oct 18, 2023
The iPanorama 360 – WordPress Virtual Tour Builder plugin for WordPress is vulnerable to SQL... Moderate Unreviewed
CVE-2023-5336 was published Oct 19, 2023
The ChatBot plugin for WordPress is vulnerable to SQL Injection via the $strid parameter in... High Unreviewed
CVE-2023-5204 was published Oct 19, 2023
In the module "Rotator Img" (posrotatorimg) in versions at least up to 1.1 from PosThemes for... Critical Unreviewed
CVE-2023-45379 was published Oct 19, 2023
DM Concept configurator before v4.9.4 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2023-43986 was published Oct 19, 2023
In the module "Carousels Pack - Instagram, Products, Brands, Supplier" (hicarouselspack) for... Critical Unreviewed
CVE-2023-45376 was published Oct 19, 2023
In the module "Creative Popup" (creativepopup) up to version 1.6.9 from WebshopWorks for... Critical Unreviewed
CVE-2023-45381 was published Oct 19, 2023
The Slimstat Analytics plugin for WordPress is vulnerable to SQL Injection via the plugin's... Moderate Unreviewed
CVE-2023-4598 was published Oct 20, 2023
The Cyr to Lat plugin for WordPress is vulnerable to authenticated SQL Injection via the ... High Unreviewed
CVE-2022-4290 was published Oct 20, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database