Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,086
Maven
5,000+
npm
3,747
NuGet
674
pip
3,436
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,310 advisories

Loading
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23912 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23911 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23913 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23780 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23779 was published Jan 16, 2025
An issue in the dfe_n_in_order component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed
CVE-2024-57655 was published Jan 14, 2025
An issue in the sql_tree_hash_1 component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57658 was published Jan 14, 2025
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57656 was published Jan 14, 2025
An issue in the sqlg_vec_upd component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed
CVE-2024-57657 was published Jan 14, 2025
An issue in the box_deserialize_string component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57643 was published Jan 14, 2025
An issue in the sqlo_expand_jts component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57660 was published Jan 14, 2025
The Admin side data storage for Contact Form 7 plugin for WordPress is vulnerable to SQL... High Unreviewed
CVE-2024-1776 was published Feb 23, 2024
The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed
CVE-2024-12614 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... High Unreviewed
CVE-2024-12613 was published Jan 16, 2025
An issue in the sqlexp component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2024-57641 was published Jan 14, 2025
An issue in the merge_table_prune_and_unionize component of MonetDB Server v11.49.1 allows... High Unreviewed
CVE-2024-57625 was published Jan 14, 2025
An issue in the dc_add_int component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2024-57640 was published Jan 14, 2025
An issue in the dfe_body_copy component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed
CVE-2024-57638 was published Jan 14, 2025
An issue in the GDKanalytical_correlation component of MonetDB Server v11.47.11 allows attackers... High Unreviewed
CVE-2024-57621 was published Jan 14, 2025
An issue in the psiginfo component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2024-57646 was published Jan 14, 2025
An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57645 was published Jan 14, 2025
An issue in the row_insert_cast component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57647 was published Jan 14, 2025
An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57650 was published Jan 14, 2025
An issue in the itc_hash_compare component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57644 was published Jan 14, 2025
An issue in the qst_vec_set component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2024-57649 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database