GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,444
Erlang
29
GitHub Actions
16
Go
1,668
Maven
4,928
npm
3,458
NuGet
595
pip
2,876
Pub
10
RubyGems
823
Rust
766
Swift
34
Unreviewed advisories
All unreviewed
5,000+
11,164 advisories
Filter by severity
Npgsql vulnerable to SQL Injection via Protocol Message Size Overflow
High
CVE-2024-32655
was published
for
Npgsql
(NuGet)
May 9, 2024
A vulnerability was found in BlueNet Technology Clinical Browsing System 1.2.1. It has been...
Moderate
Unreviewed
CVE-2024-4654
was published
May 8, 2024
A vulnerability was found in BlueNet Technology Clinical Browsing System 1.2.1 and classified as...
Moderate
Unreviewed
CVE-2024-4653
was published
May 8, 2024
A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this...
Moderate
Unreviewed
CVE-2024-4595
was published
May 7, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-34412
was published
May 6, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-34386
was published
May 6, 2024
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to SQL injection. A remote...
Moderate
Unreviewed
CVE-2021-20451
was published
May 3, 2024
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to SQL injection. A remote...
Moderate
Unreviewed
CVE-2023-38724
was published
May 3, 2024
SQL injection vulnerability in Gescen on the centrosdigitales.net platform. This vulnerability...
Critical
Unreviewed
CVE-2024-4466
was published
May 3, 2024
Voltronic Power ViewPower Pro selectEventConfig SQL Injection Remote Code Execution Vulnerability...
Critical
Unreviewed
CVE-2023-51586
was published
May 3, 2024
Voltronic Power ViewPower Pro selectDeviceListBy SQL Injection Remote Code Execution...
Critical
Unreviewed
CVE-2023-51595
was published
May 3, 2024
NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation...
High
Unreviewed
CVE-2023-44449
was published
May 3, 2024
NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code...
High
Unreviewed
CVE-2023-44450
was published
May 3, 2024
NETGEAR ProSAFE Network Management System getNodesByTopologyMapSearch SQL Injection Remote Code...
High
Unreviewed
CVE-2023-38099
was published
May 3, 2024
NETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation...
High
Unreviewed
CVE-2023-38100
was published
May 3, 2024
ASUS RT-AX92U lighttpd mod_webdav.so SQL Injection Information Disclosure Vulnerability. This...
Moderate
Unreviewed
CVE-2023-35720
was published
May 3, 2024
NETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution Vulnerability. This vulnerability...
High
Unreviewed
CVE-2023-27358
was published
May 3, 2024
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the...
High
Unreviewed
CVE-2024-34032
was published
May 3, 2024
Delta Electronics DIAEnergie is vulnerable to an SQL injection vulnerability that exists in the...
High
Unreviewed
CVE-2024-34031
was published
May 3, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2024-33911
was published
May 2, 2024
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an...
High
Unreviewed
CVE-2024-4309
was published
Apr 29, 2024
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an...
High
Unreviewed
CVE-2024-4307
was published
Apr 29, 2024
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an...
High
Unreviewed
CVE-2024-4308
was published
Apr 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-33544
was published
Apr 29, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-33546
was published
Apr 29, 2024
ProTip!
Advisories are also available from the
GraphQL API