Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,517
Maven
5,000+
npm
4,150
NuGet
736
pip
3,952
Pub
12
RubyGems
946
Rust
1,026
Swift
39
Unreviewed advisories
All unreviewed
5,000+

4,187 advisories

Loading
FS Gigs Script 1.0 has SQL Injection via the browse-category.php cat parameter, browse-scategory... Critical Unreviewed
CVE-2017-17576 was published May 13, 2022
FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php fl_orig or fl_dest... Critical Unreviewed
CVE-2017-17584 was published May 13, 2022
FS Grubhub Clone 1.0 has SQL Injection via the /food keywords parameter. Critical Unreviewed
CVE-2017-17582 was published May 13, 2022
FS Freelancer Clone 1.0 has SQL Injection via the profile.php u parameter. Critical Unreviewed
CVE-2017-17579 was published May 13, 2022
FS Indiamart Clone 1.0 has SQL Injection via the catcompany.php token parameter, buyleads-details... Critical Unreviewed
CVE-2017-17587 was published May 13, 2022
FS Olx Clone 1.0 has SQL Injection via the subpage.php scat parameter or the message.php pid... Critical Unreviewed
CVE-2017-17586 was published May 13, 2022
FS Monster Clone 1.0 has SQL Injection via the Employer_Details.php id parameter. Critical Unreviewed
CVE-2017-17585 was published May 13, 2022
FS Thumbtack Clone 1.0 has SQL Injection via the browse-category.php cat parameter or the browse... Critical Unreviewed
CVE-2017-17589 was published May 13, 2022
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/. Critical Unreviewed
CVE-2017-17643 was published May 13, 2022
FS IMDB Clone 1.0 has SQL Injection via the movie.php f parameter, tvshow.php s parameter, or... Critical Unreviewed
CVE-2017-17588 was published May 13, 2022
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php... Critical Unreviewed
CVE-2017-17110 was published May 13, 2022
An issue was discovered in CSS-TRICKS Chat2 through 2015-05-05. The userid parameter in jumpin... Critical Unreviewed
CVE-2019-7316 was published May 13, 2022
SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view... Critical Unreviewed
CVE-2018-6373 was published May 13, 2022
Dolibarr SQL Injection vulnerability Critical
CVE-2018-9019 was published for dolibarr/dolibarr (Composer) May 13, 2022
SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search,... Critical Unreviewed
CVE-2018-7318 was published May 13, 2022
SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress before 4.7... Critical Unreviewed
CVE-2017-5611 was published May 13, 2022
SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) 5.1-0 via the group_id... Critical Unreviewed
CVE-2017-14252 was published May 13, 2022
SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) 5.1-0 via the user_id cookie... Critical Unreviewed
CVE-2017-14247 was published May 13, 2022
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter... Critical Unreviewed
CVE-2017-14402 was published May 13, 2022
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter... Critical Unreviewed
CVE-2017-14401 was published May 13, 2022
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the term parameter to... Critical Unreviewed
CVE-2017-14403 was published May 13, 2022
EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root Critical Unreviewed
CVE-2017-1000060 was published May 13, 2022
SQL injection vulnerability in mod_mysql_vhost.c in lighttpd before 1.4.35 allows remote... Critical Unreviewed
CVE-2014-2323 was published May 13, 2022
The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links... Critical Unreviewed
CVE-2018-17254 was published May 13, 2022
An improper input validation vulnerability in CA Privileged Access Manager 2.x allows remote... Critical Unreviewed
CVE-2018-9029 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database