Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

12,200 advisories

Loading
A vulnerability, which was classified as critical, has been found in SourceCodester Online Flight... Critical Unreviewed
CVE-2023-0245 was published Jan 12, 2023
A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function... Critical Unreviewed
CVE-2023-0243 was published Jan 12, 2023
It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly... High Unreviewed
CVE-2020-14349 was published May 24, 2022
A vulnerability, which was classified as critical, has been found in pointhi searx_stats. This... Critical Unreviewed
CVE-2014-125077 was published Jan 15, 2023
CentOS-WebPanel.com (aka CWP) CentOS Web Panel (for CentOS 6 and 7) allows SQL Injection via the ... High Unreviewed
CVE-2020-10230 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15620 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15616 was published May 24, 2022
A vulnerability was found in 2071174A vinylmap. It has been classified as critical. Affected is... Critical Unreviewed
CVE-2015-10056 was published Jan 16, 2023
The Fontsy WordPress plugin through 1.8.6 does not properly sanitize and escape a parameter... Critical Unreviewed
CVE-2022-4447 was published Jan 16, 2023
A vulnerability, which was classified as critical, has been found in risheesh debutsav. This... Critical Unreviewed
CVE-2014-125081 was published Jan 18, 2023
A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as... Critical Unreviewed
CVE-2015-10064 was published Jan 17, 2023
A vulnerability classified as critical has been found in PrivateSky apersistence. This affects an... Critical Unreviewed
CVE-2017-20171 was published Jan 18, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15622 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15617 was published May 24, 2022
A vulnerability was found in nivit redports. It has been declared as critical. This vulnerability... Critical Unreviewed
CVE-2014-125082 was published Jan 18, 2023
A vulnerability was found in PictureThisWebServer and classified as critical. This issue affects... Critical Unreviewed
CVE-2015-10055 was published Jan 16, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15619 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15618 was published May 24, 2022
** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in... Critical Unreviewed
CVE-2010-10007 was published Jan 18, 2023
ZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can... High Unreviewed
CVE-2022-47745 was published Jan 19, 2023
There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability... Critical Unreviewed
CVE-2022-46071 was published Dec 14, 2022
Luocms v2.0 is affected by SQL Injection in /admin/manager/admin_mod.php. An attacker can obtain... High Unreviewed
CVE-2022-24601 was published Mar 11, 2022
Network Olympus version 1.8.0 allows an authenticated admin user to inject SQL queries in '/api... High Unreviewed
CVE-2022-25225 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php. Critical Unreviewed
CVE-2022-24606 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php. Critical Unreviewed
CVE-2022-24605 was published Mar 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database