Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,096 advisories

Loading
A vulnerability was found in miniCal 1.0.0. It has been rated as critical. This issue affects... Moderate Unreviewed
CVE-2023-3307 was published Jun 18, 2023
A vulnerability, which was classified as critical, has been found in code-projects Agro-School... Moderate Unreviewed
CVE-2023-3310 was published Jun 18, 2023
JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode Moderate
CVE-2023-34602 was published for org.jeecgframework.boot:jeecg-boot-parent (Maven) Jun 19, 2023
JeecgBoot vulnerable to SQL injection in queryFilterTableDictInfo Moderate
CVE-2023-34603 was published for org.jeecgframework.boot:jeecg-boot-parent (Maven) Jun 19, 2023
The Integration for Contact Form 7 and Zoho CRM, Bigin WordPress plugin before 1.2.4 does not... Moderate Unreviewed
CVE-2023-2527 was published Jun 19, 2023
The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the `id`... High Unreviewed
CVE-2023-2719 was published Jun 19, 2023
The QueryWall: Plug'n Play Firewall WordPress plugin through 1.1.1 does not properly sanitise and... High Unreviewed
CVE-2023-2492 was published Jun 19, 2023
The WP Custom Cursors WordPress plugin before 3.2 does not properly sanitise and escape a... High Unreviewed
CVE-2023-2221 was published Jun 19, 2023
Unauth. SQL Injection (SQLi) vulnerability in Themefic Ultimate Addons for Contact Form 7 plugin ... Critical Unreviewed
CVE-2022-47586 was published Jun 19, 2023
The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the agents[]... High Unreviewed
CVE-2023-2805 was published Jun 19, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-2907 was published Jun 19, 2023
SQL injection vulnerability found in Joyplus-cms v.1.6.0 allows a remote attacker to access... High Unreviewed
CVE-2020-20636 was published Jun 20, 2023
SQL injection vulnerability found in WUZHICMS v.4.1.0 allows a remote attacker to execute... Critical Unreviewed
CVE-2020-20413 was published Jun 20, 2023
SQL injection vulnerability in OpenCart v.2.2.00 thru 3.0.3.2 allows a remote attacker to execute... High Unreviewed
CVE-2020-20491 was published Jun 20, 2023
Adiscon LogAnalyzer v4.1.13 and before is vulnerable to SQL Injection. Critical Unreviewed
CVE-2023-34600 was published Jun 20, 2023
SQL injection vulnerability in PHPOK v.5.4. allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2020-21486 was published Jun 20, 2023
SQL injection vulnerability in gaozhifeng PHPMyWind v.5.6 allows a remote attacker to execute... High Unreviewed
CVE-2020-21400 was published Jun 20, 2023
A vulnerability was found in SourceCodester Online School Fees System 1.0 and classified as... Moderate Unreviewed
CVE-2023-3340 was published Jun 20, 2023
A vulnerability has been found in code-projects Agro-School Management System 1.0 and classified... Moderate Unreviewed
CVE-2023-3339 was published Jun 21, 2023
Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection (SQLI) attacks,... Critical Unreviewed
CVE-2023-33584 was published Jun 21, 2023
Jeesite before commit 10742d3 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-34601 was published Jun 22, 2023
Auth. (subscriber+) SQL Injection (SQLi) vulnerability in RapidLoad RapidLoad Power-Up for... Moderate Unreviewed
CVE-2022-47593 was published Jun 22, 2023
An issue in the rel_deps component of MonetDB Server v11.45.17 and v11.46.0 allows attackers to... High Unreviewed
CVE-2023-36364 was published Jun 22, 2023
An issue in the __nss_database_lookup component of MonetDB Server v11.45.17 and v11.46.0 allows... High Unreviewed
CVE-2023-36363 was published Jun 22, 2023
An issue in the rel_sequences component of MonetDB Server v11.45.17 and v11.46.0 allows attackers... High Unreviewed
CVE-2023-36362 was published Jun 22, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database