Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,343
Erlang
31
GitHub Actions
22
Go
2,107
Maven
5,000+
npm
3,764
NuGet
679
pip
3,452
Pub
12
RubyGems
892
Rust
886
Swift
37
Unreviewed advisories
All unreviewed
5,000+

13,163 advisories

Loading
WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the... Critical Unreviewed
CVE-2024-57031 was published Jan 17, 2025
WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter. Critical Unreviewed
CVE-2024-57034 was published Jan 17, 2025
code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via the Username parameter... Critical Unreviewed
CVE-2023-41014 was published Mar 7, 2024
WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php. Critical Unreviewed
CVE-2024-57035 was published Jan 17, 2025
Active Record contains SQL Injection High
CVE-2012-6496 was published for activerecord (RubyGems) Oct 24, 2017
levpachmanov
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-49333 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22716 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22710 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22553 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-49655 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-49666 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-51818 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-49303 was published Jan 21, 2025
activerecord vulnerable to SQL Injection High
CVE-2012-2695 was published for activerecord (RubyGems) Oct 24, 2017
levpachmanov
The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress... Moderate Unreviewed
CVE-2024-13230 was published Jan 21, 2025
The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated... Critical Unreviewed
CVE-2025-0585 was published Jan 20, 2025
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to time-based... High Unreviewed
CVE-2024-13184 was published Jan 18, 2025
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... High Unreviewed
CVE-2025-0308 was published Jan 18, 2025
The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed
CVE-2024-12614 was published Jan 16, 2025
The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login... High Unreviewed
CVE-2024-1990 was published Apr 9, 2024
Campcodes Cybercafe Management System v1.0 is vulnerable to SQL Injection in /ccms/view-user... High Unreviewed
CVE-2024-57162 was published Jan 16, 2025
An issue in the BATcalcbetween_intern component of MonetDB Server v11.47.11 allows attackers to... High Unreviewed
CVE-2024-57615 was published Jan 14, 2025
An issue in the dfe_inx_op_col_def_table component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57642 was published Jan 14, 2025
An issue in the dameraulevenshtein component of MonetDB Server v11.49.1 allows attackers to cause... High Unreviewed
CVE-2024-57617 was published Jan 14, 2025
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2024-57768 was published Jan 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database