GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,889
Composer 4,870
Erlang 37
GitHub Actions 36
Go 2,500
Maven 5,942
npm 4,147
NuGet 735
pip 3,948
Pub 12
RubyGems 945
Rust 1,025
Swift 39

Unreviewed advisories

All unreviewed 269,561

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

4,182 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Emuse - eServices / eNvoice SQL injection can be used in various ways ranging from bypassing... Critical Unreviewed

CVE-2021-36722 was published Dec 30, 2021

Nettmp NNT 5.1 is affected by a SQL injection vulnerability. An attacker can bypass... Critical Unreviewed

CVE-2021-45814 was published Dec 29, 2021

Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn"... Critical Unreviewed

CVE-2021-43155 was published Dec 23, 2021

Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter... Critical Unreviewed

CVE-2021-43157 was published Dec 23, 2021

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple... Critical Unreviewed

CVE-2021-43629 was published Dec 23, 2021

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the... Critical Unreviewed

CVE-2021-43631 was published Dec 23, 2021

Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email... Critical Unreviewed

CVE-2021-43628 was published Dec 23, 2021

An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R... Critical Unreviewed

CVE-2021-21916 was published Dec 23, 2021

The wcfm_ajax_controller AJAX action of the WCFM Marketplace WordPress plugin before 3.4.12,... Critical Unreviewed

CVE-2021-24849 was published Dec 22, 2021

Multiple SQL injection vulnerabilities are found on Simple Forum-Discussion System 1.0 For... Critical Unreviewed

CVE-2021-45252 was published Dec 22, 2021

The id parameter in view_storage.php from Simple Cold Storage Management System 1.0 appears to be... Critical Unreviewed

CVE-2021-45253 was published Dec 22, 2021

The email parameter from ajax.php of Video Sharing Website 1.0 appears to be vulnerable to SQL... Critical Unreviewed

CVE-2021-45255 was published Dec 22, 2021

TCMAN GIM is vulnerable to a SQL injection vulnerability inside several available webservice... Critical Unreviewed

CVE-2021-40850 was published Dec 18, 2021

ThinkPHP5 SQL Injection vulnerability Critical

CVE-2021-44350 was published for topthink/framework (Composer) Dec 17, 2021

A SQL Injection vulnerability exists in ZZCMS 2021 via the askbigclassid parameter in /admin/ask... Critical Unreviewed

CVE-2021-42945 was published Dec 16, 2021

Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... Critical Unreviewed

CVE-2021-42311 was published Dec 16, 2021

Microsoft Defender for IoT Remote Code Execution Vulnerability This CVE ID is unique from CVE... Critical Unreviewed

CVE-2021-42313 was published Dec 16, 2021

Online Magazine Management System 1.0 contains a SQL injection authentication bypass... Critical Unreviewed

CVE-2021-44653 was published Dec 16, 2021

Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication... Critical Unreviewed

CVE-2021-44655 was published Dec 16, 2021

There is an upload sql injection vulnerability in the background of taocms 3.0.2 in parameter id... Critical Unreviewed

CVE-2021-45014 was published Dec 15, 2021

If configured to use an Oracle database and if a query is created using the flexible search java... Critical Unreviewed

CVE-2021-42064 was published Dec 15, 2021

The WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection Plugin StopBadBots... Critical Unreviewed

CVE-2021-24863 was published Dec 14, 2021

The Modern Events Calendar Lite WordPress plugin before 6.1.5 does not sanitise and escape the... Critical Unreviewed

CVE-2021-24946 was published Dec 14, 2021

The LearnPress WordPress plugin before 4.1.4 does not sanitise, validate and escape the id... Critical Unreviewed

CVE-2021-24951 was published Dec 14, 2021

SQL injection bypass authentication vulnerability in PHPGURUKUL Employee Record Management System... Critical Unreviewed

CVE-2021-44966 was published Dec 14, 2021

Previous 1…165…168 Next

Previous 1 2 … 163 164 165 166 167 168 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

4,182 advisories