GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,536

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

12,635 advisories

Filter by severity

Sort by

Least recently updated

The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed

CVE-2024-12614 was published Jan 16, 2025

The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... Moderate Unreviewed

CVE-2024-12615 was published Jan 16, 2025

The airPASS from NetVision Information has a SQL Injection vulnerability, allowing... Critical Unreviewed

CVE-2025-0455 was published Jan 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-22785 was published Jan 15, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-22799 was published Jan 15, 2025

SQL injection in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January... High Unreviewed

CVE-2024-13162 was published Jan 14, 2025

An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed

CVE-2024-52969 was published Jan 14, 2025

A improper neutralization of special elements used in an sql command ('sql injection') in... Low Unreviewed

CVE-2024-55593 was published Jan 14, 2025

A improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed

CVE-2024-35275 was published Jan 14, 2025

A improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed

CVE-2024-35278 was published Jan 14, 2025

An improper neutralization of special elements used in an sql command ('sql injection')... High Unreviewed

CVE-2023-37931 was published Jan 14, 2025

SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An... High Unreviewed

CVE-2025-20620 was published Jan 14, 2025

SAP NetWeaver AS ABAP and ABAP Platform does not check for authorization when a user executes... High Unreviewed

CVE-2025-0063 was published Jan 14, 2025

An issue in the qst_vec_set_copy component of openlink virtuoso-opensource v7.2.11 allows... Moderate Unreviewed

CVE-2024-57653 was published Jan 14, 2025

An issue in the jp_add component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57651 was published Jan 14, 2025

An issue in the numeric_to_dv component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed

CVE-2024-57652 was published Jan 14, 2025

An issue in the sqlexp component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57641 was published Jan 14, 2025

An issue in the dc_add_int component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57640 was published Jan 14, 2025

An issue in the dfe_body_copy component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed

CVE-2024-57638 was published Jan 14, 2025

An issue in the itc_set_param_row component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57648 was published Jan 14, 2025

An issue in the psiginfo component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57646 was published Jan 14, 2025

An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57645 was published Jan 14, 2025

An issue in the row_insert_cast component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57647 was published Jan 14, 2025

An issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57650 was published Jan 14, 2025

An issue in the itc_hash_compare component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57644 was published Jan 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,635 advisories