Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

3,384 advisories

Loading
SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the ... Critical Unreviewed
CVE-2024-2724 was published Mar 22, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxConfigTotem.php, in the 'id'... Critical Unreviewed
CVE-2024-2722 was published Mar 22, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxSubServicios.php, in the ... Critical Unreviewed
CVE-2024-2723 was published Mar 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-27956 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through  /sentrifugo/index.php/reports... Critical Unreviewed
CVE-2024-29876 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through  /sentrifugo/index.php/default/reports... Critical Unreviewed
CVE-2024-29875 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/reports... Critical Unreviewed
CVE-2024-29873 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/empscreening/add, ... Critical Unreviewed
CVE-2024-29872 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments... Critical Unreviewed
CVE-2024-29870 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/default/reports... Critical Unreviewed
CVE-2024-29874 was published Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments... Critical Unreviewed
CVE-2024-29871 was published Mar 21, 2024
A SQL Injection has been found on SCAN_VISIO eDocument Suite Web Viewer of Abast. This... Critical Unreviewed
CVE-2024-29732 was published Mar 21, 2024
SQL injection vulnerability in Badger Meter Monitool affecting versions 4.6.3 and earlier. A... Critical Unreviewed
CVE-2024-1301 was published Mar 12, 2024
A improper neutralization of special elements used in an sql command ('sql injection') in... Critical Unreviewed
CVE-2023-48788 was published Mar 12, 2024
ZDI-CAN-19105: Parse Server literalizeRegexPart SQL Injection Critical
CVE-2024-27298 was published for parse-server (npm) Mar 1, 2024
mtrezza EhsanParsania
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-25910 was published Feb 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-25927 was published Feb 28, 2024
org.postgresql:postgresql vulnerable to SQL Injection via line comment generation Critical
CVE-2024-1597 was published for org.postgresql:postgresql (Maven) Feb 21, 2024
paul-gerste-sonarsource
Duplicate Advisory: SQL injection in pgjdbc Critical
GHSA-xfg6-62px-cxc2 was published for org.postgresql:postgresql (Maven) Feb 19, 2024 withdrawn
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-7081 was published Feb 15, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-5155 was published Feb 15, 2024
EBM Technologies RISWEB's specific query function parameter does not properly restrict user input... Critical Unreviewed
CVE-2024-26264 was published Feb 15, 2024
An issue in Employee Managment System v1.0 allows attackers to bypass authentication via... Critical Unreviewed
CVE-2024-25214 was published Feb 14, 2024
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2024-25216 was published Feb 14, 2024
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2024-25215 was published Feb 14, 2024
ProTip! Advisories are also available from the GraphQL API