GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,090
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
3,384 advisories
Filter by severity
SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the ...
Critical
Unreviewed
CVE-2024-2724
was published
Mar 22, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxConfigTotem.php, in the 'id'...
Critical
Unreviewed
CVE-2024-2722
was published
Mar 22, 2024
SQL injection vulnerability in the CIGESv2 system, through /ajaxSubServicios.php, in the ...
Critical
Unreviewed
CVE-2024-2723
was published
Mar 22, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-27956
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/reports...
Critical
Unreviewed
CVE-2024-29876
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/default/reports...
Critical
Unreviewed
CVE-2024-29875
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/reports...
Critical
Unreviewed
CVE-2024-29873
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/empscreening/add, ...
Critical
Unreviewed
CVE-2024-29872
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments...
Critical
Unreviewed
CVE-2024-29870
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/default/reports...
Critical
Unreviewed
CVE-2024-29874
was published
Mar 21, 2024
SQL injection vulnerability in Sentrifugo 3.2, through /sentrifugo/index.php/index/getdepartments...
Critical
Unreviewed
CVE-2024-29871
was published
Mar 21, 2024
A SQL Injection has been found on SCAN_VISIO eDocument Suite Web Viewer of Abast. This...
Critical
Unreviewed
CVE-2024-29732
was published
Mar 21, 2024
SQL injection vulnerability in Badger Meter Monitool affecting versions 4.6.3 and earlier. A...
Critical
Unreviewed
CVE-2024-1301
was published
Mar 12, 2024
A improper neutralization of special elements used in an sql command ('sql injection') in...
Critical
Unreviewed
CVE-2023-48788
was published
Mar 12, 2024
ZDI-CAN-19105: Parse Server literalizeRegexPart SQL Injection
Critical
CVE-2024-27298
was published
for
parse-server
(npm)
Mar 1, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-25910
was published
Feb 28, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-25927
was published
Feb 28, 2024
org.postgresql:postgresql vulnerable to SQL Injection via line comment generation
Critical
CVE-2024-1597
was published
for
org.postgresql:postgresql
(Maven)
Feb 21, 2024
Duplicate Advisory: SQL injection in pgjdbc
Critical
GHSA-xfg6-62px-cxc2
was published
for
org.postgresql:postgresql
(Maven)
Feb 19, 2024
•
withdrawn
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2023-7081
was published
Feb 15, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2023-5155
was published
Feb 15, 2024
EBM Technologies RISWEB's specific query function parameter does not properly restrict user input...
Critical
Unreviewed
CVE-2024-26264
was published
Feb 15, 2024
An issue in Employee Managment System v1.0 allows attackers to bypass authentication via...
Critical
Unreviewed
CVE-2024-25214
was published
Feb 14, 2024
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2024-25216
was published
Feb 14, 2024
Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2024-25215
was published
Feb 14, 2024
ProTip!
Advisories are also available from the
GraphQL API