GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,599 advisories
Filter by severity
A vulnerability, which was classified as critical, has been found in SourceCodester Online Flight...
Critical
Unreviewed
CVE-2023-0245
was published
Jan 12, 2023
A vulnerability classified as critical has been found in TuziCMS 2.0.6. This affects the function...
Critical
Unreviewed
CVE-2023-0243
was published
Jan 12, 2023
A vulnerability, which was classified as critical, has been found in pointhi searx_stats. This...
Critical
Unreviewed
CVE-2014-125077
was published
Jan 15, 2023
The Fontsy WordPress plugin through 1.8.6 does not properly sanitize and escape a parameter...
Critical
Unreviewed
CVE-2022-4447
was published
Jan 16, 2023
A vulnerability was found in 2071174A vinylmap. It has been classified as critical. Affected is...
Critical
Unreviewed
CVE-2015-10056
was published
Jan 16, 2023
A vulnerability, which was classified as critical, has been found in risheesh debutsav. This...
Critical
Unreviewed
CVE-2014-125081
was published
Jan 18, 2023
A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as...
Critical
Unreviewed
CVE-2015-10064
was published
Jan 17, 2023
A vulnerability was found in PictureThisWebServer and classified as critical. This issue affects...
Critical
Unreviewed
CVE-2015-10055
was published
Jan 16, 2023
A vulnerability classified as critical has been found in PrivateSky apersistence. This affects an...
Critical
Unreviewed
CVE-2017-20171
was published
Jan 18, 2023
A vulnerability was found in nivit redports. It has been declared as critical. This vulnerability...
Critical
Unreviewed
CVE-2014-125082
was published
Jan 18, 2023
** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in...
Critical
Unreviewed
CVE-2010-10007
was published
Jan 18, 2023
There is SQL Injection vulnerability at Helmet Store Showroom v1.0 Login Page. This vulnerability...
Critical
Unreviewed
CVE-2022-46071
was published
Dec 14, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_mod.php.
Critical
Unreviewed
CVE-2022-24603
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/news_mod.php.
Critical
Unreviewed
CVE-2022-24602
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/news_ok.php.
Critical
Unreviewed
CVE-2022-24607
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_mod.php.
Critical
Unreviewed
CVE-2022-24604
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection through /admin/login.php. An attacker can log in to the...
Critical
Unreviewed
CVE-2022-24600
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php.
Critical
Unreviewed
CVE-2022-24606
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php.
Critical
Unreviewed
CVE-2022-24605
was published
Mar 11, 2022
The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the...
Critical
Unreviewed
CVE-2022-0169
was published
Mar 15, 2022
The CommonsBooking WordPress plugin before 2.6.8 does not sanitise and escape the location...
Critical
Unreviewed
CVE-2022-0658
was published
Mar 15, 2022
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via...
Critical
Unreviewed
CVE-2022-25494
was published
Mar 16, 2022
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in...
Critical
Unreviewed
CVE-2022-25490
was published
Mar 16, 2022
Online Project Time Management System v1.0 was discovered to contain a SQL injection...
Critical
Unreviewed
CVE-2022-26293
was published
Mar 17, 2022
The MOLIE WordPress plugin through 0.5 does not validate and escape a post parameter before using...
Critical
Unreviewed
CVE-2021-25007
was published
Mar 15, 2022
ProTip!
Advisories are also available from the
GraphQL API