Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,175 advisories

Loading
Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the... High Unreviewed
CVE-2024-49574 was published Nov 18, 2024
The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time... High Unreviewed
CVE-2024-9887 was published Nov 16, 2024
The Blogger 301 Redirect plugin for WordPress is vulnerable to blind time-based SQL Injection via... High Unreviewed
CVE-2024-10645 was published Nov 16, 2024
Improper neutralization of special elements used in an SQL command ('SQL Injection') in some... High Unreviewed
CVE-2024-39368 was published Nov 13, 2024
A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0... High Unreviewed
CVE-2024-50971 was published Nov 13, 2024
A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0... High Unreviewed
CVE-2024-50972 was published Nov 13, 2024
A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project... High Unreviewed
CVE-2024-50970 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34780 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32839 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32841 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32844 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-32847 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34784 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34781 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-34782 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-37376 was published Nov 13, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-50323 was published Nov 12, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-50326 was published Nov 12, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-50327 was published Nov 12, 2024
SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6... High Unreviewed
CVE-2024-50328 was published Nov 12, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51845 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51882 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51820 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51837 was published Nov 11, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-51843 was published Nov 11, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database