Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

13,130 advisories

Loading
The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... High Unreviewed
CVE-2024-12613 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed
CVE-2024-12614 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... Moderate Unreviewed
CVE-2024-12615 was published Jan 16, 2025
The airPASS from NetVision Information has a SQL Injection vulnerability, allowing... Critical Unreviewed
CVE-2025-0455 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22799 was published Jan 15, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22785 was published Jan 15, 2025
SQL injection in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January... High Unreviewed
CVE-2024-13162 was published Jan 14, 2025
An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2024-52969 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Low Unreviewed
CVE-2024-55593 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed
CVE-2024-35275 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed
CVE-2024-35278 was published Jan 14, 2025
An improper neutralization of special elements used in an sql command ('sql injection')... High Unreviewed
CVE-2023-37931 was published Jan 14, 2025
SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An... High Unreviewed
CVE-2025-20620 was published Jan 14, 2025
SAP NetWeaver AS ABAP and ABAP Platform does not check for authorization when a user executes... High Unreviewed
CVE-2025-0063 was published Jan 14, 2025
An issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57656 was published Jan 14, 2025
An issue in the sqlg_vec_upd component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed
CVE-2024-57657 was published Jan 14, 2025
An issue in the box_deserialize_string component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57643 was published Jan 14, 2025
An issue in the sqlo_expand_jts component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57660 was published Jan 14, 2025
An issue in the dfe_n_in_order component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed
CVE-2024-57655 was published Jan 14, 2025
An issue in the sql_tree_hash_1 component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57658 was published Jan 14, 2025
An issue in the dfe_inx_op_col_def_table component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57642 was published Jan 14, 2025
An issue in the dfe_unit_gb_dependant component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed
CVE-2024-57637 was published Jan 14, 2025
An issue in the exps_bind_column component of MonetDB Server v11.49.1 allows attackers to cause a... High Unreviewed
CVE-2024-57633 was published Jan 14, 2025
An issue in the exp_copy component of MonetDB Server v11.49.1 allows attackers to cause a Denial... High Unreviewed
CVE-2024-57634 was published Jan 14, 2025
An issue in the chash_array component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed
CVE-2024-57635 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database