Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

12,634 advisories

Loading
An issue in the tail_type component of MonetDB Server v11.49.1 allows attackers to cause a Denial... High Unreviewed
CVE-2024-57629 was published Jan 14, 2025
An issue in the exp_values_set_supertype component of MonetDB Server v11.49.1 allows attackers to... High Unreviewed
CVE-2024-57628 was published Jan 14, 2025
An issue in the exp_ref component of MonetDB Server v11.49.1 allows attackers to cause a Denial... High Unreviewed
CVE-2024-57631 was published Jan 14, 2025
An issue in the exps_card component of MonetDB Server v11.49.1 allows attackers to cause a Denial... High Unreviewed
CVE-2024-57630 was published Jan 14, 2025
An issue was discovered in Selesta Visual Access Manager (VAM) prior to 4.42.2. An authenticated... High Unreviewed
CVE-2023-42244 was published Jan 14, 2025
The CF Internal Link Shortcode plugin for WordPress is vulnerable to SQL Injection via the ... High Unreviewed
CVE-2024-12404 was published Jan 11, 2025
An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker... Critical Unreviewed
CVE-2025-0103 was published Jan 11, 2025
Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advanced... High Unreviewed
CVE-2024-9134 was published Jan 11, 2025
The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3,... Moderate Unreviewed
CVE-2024-12473 was published Jan 10, 2025
BigAnt Office Messenger 5.6.06 is vulnerable to SQL Injection via the 'dev_code' parameter. Moderate Unreviewed
CVE-2024-54761 was published Jan 9, 2025
Ruoyi v.4.7.9 and before contains an authenticated SQL injection vulnerability. This is because... Moderate Unreviewed
CVE-2024-54762 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22505 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22540 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22527 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22542 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22537 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22535 was published Jan 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-7026 was published Jan 9, 2025
The WP Travel – Ultimate Travel Booking System, Tour Management Engine plugin for WordPress is... Moderate Unreviewed
CVE-2024-12067 was published Jan 9, 2025
An issue was discovered in the Interllect Core Search in Polaris FT Intellect Core Banking 9.5.... High Unreviewed
CVE-2024-55517 was published Jan 8, 2025
The Cost Calculator Builder PRO plugin for WordPress is vulnerable to blind time-based SQL... High Unreviewed
CVE-2024-11939 was published Jan 8, 2025
The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2024-12030 was published Jan 8, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22350 was published Jan 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22536 was published Jan 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22533 was published Jan 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database