Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,082 advisories

Loading
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the n_utente_agg... Critical Unreviewed
CVE-2023-43373 was published Sep 20, 2023
Hoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the id_utente_log... Critical Unreviewed
CVE-2023-43374 was published Sep 20, 2023
Hoteldruid v3.0.5 was discovered to contain multiple SQL injection vulnerabilities at /hoteldruid... Critical Unreviewed
CVE-2023-43375 was published Sep 20, 2023
SQL injection vulnerability in PrestaShop opartsavecart through 2.0.7 allows remote attackers to... Critical Unreviewed
CVE-2023-34575 was published Sep 21, 2023
SimpleImportProduct Prestashop Module v6.2.9 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2023-39675 was published Sep 21, 2023
Phpjabbers PHP Shopping Cart 4.2 is vulnerable to SQL Injection via the id parameter. High Unreviewed
CVE-2023-43274 was published Sep 21, 2023
SQL injection vulnerability in Prestashop opartplannedpopup 1.4.11 and earlier allows remote... Critical Unreviewed
CVE-2023-34577 was published Sep 21, 2023
Frappe LMS is an open source learning management system. In versions 1.0.0 and prior, on the... Critical Unreviewed
CVE-2023-42807 was published Sep 21, 2023
SQL injection vulnerability in updatepos.php in PrestaShop opartfaq through 1.0.3 allows remote... Critical Unreviewed
CVE-2023-34576 was published Sep 21, 2023
Projectworldsl Assets-management-system-in-php 1.0 is vulnerable to SQL Injection via the "id"... Critical Unreviewed
CVE-2023-43144 was published Sep 22, 2023
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote attacker to... Critical Unreviewed
CVE-2023-43468 was published Sep 23, 2023
SQL injection vulnerability in janobe Online Voting System v.1.0 allows a remote attacker to... Critical Unreviewed
CVE-2023-43470 was published Sep 23, 2023
SQL injection vulnerability in janobe Online Job Portal v.2020 allows a remote attacker to... Critical Unreviewed
CVE-2023-43469 was published Sep 23, 2023
UpLight cookiebanner before 1.5.1 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2023-39640 was published Sep 25, 2023
szvone vmqphp <=1.13 is vulnerable to SQL Injection. Unauthorized remote users can use sql... Moderate Unreviewed
CVE-2023-43132 was published Sep 25, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-35071 was published Sep 27, 2023
SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL... High Unreviewed
CVE-2023-39378 was published Sep 27, 2023
In WS_FTP Server version 8.7.0 prior to 8.7.4 and version 8.8.0 prior to 8.8.2, a SQL... High Unreviewed
CVE-2023-40046 was published Sep 27, 2023
SQL Injection vulnerability in Tianchoy Blog v.1.8.8 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2023-43381 was published Sep 27, 2023
SQL injection vulnerability in Item List page of Welcart e-Commerce versions 2.7 to 2.8.21 allows... Moderate Unreviewed
CVE-2023-43493 was published Sep 27, 2023
SQL injection vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21... High Unreviewed
CVE-2023-43610 was published Sep 27, 2023
Super Store Finder v3.6 and below was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2023-44044 was published Sep 27, 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-4737 was published Sep 27, 2023
Sourcecodester Toll Tax Management System v1 is vulnerable to SQL Injection. High Unreviewed
CVE-2023-44047 was published Sep 27, 2023
SQL injection can exist in a newly created part of the JFinalcms background, and the parameters... High Unreviewed
CVE-2023-43192 was published Sep 28, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database