Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,083 advisories

Loading
Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities at /hoteldruid... Critical Unreviewed
CVE-2023-43375 was published Sep 20, 2023
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the numcaselle... Critical Unreviewed
CVE-2023-43371 was published Sep 20, 2023
SimpleImportProduct Prestashop Module v6.2.9 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2023-39675 was published Sep 21, 2023
SQL injection vulnerability in PrestaShop opartsavecart through 2.0.7 allows remote attackers to... Critical Unreviewed
CVE-2023-34575 was published Sep 21, 2023
Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi v1.4.24 and all previous versions are... Moderate Unreviewed
CVE-2023-4292 was published Sep 21, 2023
Phpjabbers PHP Shopping Cart 4.2 is vulnerable to SQL Injection via the id parameter. High Unreviewed
CVE-2023-43274 was published Sep 21, 2023
Frappe LMS is an open source learning management system. In versions 1.0.0 and prior, on the... Critical Unreviewed
CVE-2023-42807 was published Sep 21, 2023
SQL injection vulnerability in Prestashop opartplannedpopup 1.4.11 and earlier allows remote... Critical Unreviewed
CVE-2023-34577 was published Sep 21, 2023
Dreamer CMS 4.1.3 is vulnerable to SQL Injection. Critical Unreviewed
CVE-2023-42279 was published Sep 21, 2023
SQL injection vulnerability in updatepos.php in PrestaShop opartfaq through 1.0.3 allows remote... Critical Unreviewed
CVE-2023-34576 was published Sep 21, 2023
FUXA SQL Injection vulnerability Critical
CVE-2023-31719 was published for fuxa-server (npm) Sep 22, 2023
FUXA SQL Injection vulnerability High
CVE-2023-31717 was published for fuxa-server (npm) Sep 22, 2023
Projectworldsl Assets-management-system-in-php 1.0 is vulnerable to SQL Injection via the "id"... Critical Unreviewed
CVE-2023-43144 was published Sep 22, 2023
SQL injection in jeecgboot Critical
CVE-2023-40989 was published for org.jeecgframework.boot:jeecg-boot-common (Maven) Sep 22, 2023
MarkLee131
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote attacker to... Critical Unreviewed
CVE-2023-43468 was published Sep 23, 2023
SQL injection vulnerability in janobe Online Voting System v.1.0 allows a remote attacker to... Critical Unreviewed
CVE-2023-43470 was published Sep 23, 2023
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote attacker to... Critical Unreviewed
CVE-2023-43469 was published Sep 23, 2023
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was... Moderate Unreviewed
CVE-2023-5152 was published Sep 25, 2023
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was... Moderate Unreviewed
CVE-2023-5153 was published Sep 25, 2023
** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as... Moderate Unreviewed
CVE-2023-5151 was published Sep 25, 2023
The WP Job Portal WordPress plugin through 2.0.3 does not sanitise and escape a parameter before... Critical Unreviewed
CVE-2023-4490 was published Sep 25, 2023
UpLight cookiebanner before 1.5.1 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-39640 was published Sep 25, 2023
szvone vmqphp <=1.13 is vulnerable to SQL Injection. Unauthorized remote users can use sql... Moderate Unreviewed
CVE-2023-43132 was published Sep 25, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-35071 was published Sep 27, 2023
In WS_FTP Server version 8.7.0 prior to 8.7.4 and version 8.8.0 prior to 8.8.2, a SQL... High Unreviewed
CVE-2023-40046 was published Sep 27, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database