Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,843 advisories

Loading
Zoho ManageEngine OpManager before 125588 (and before 125603) is vulnerable to authenticated SQL... High Unreviewed
CVE-2022-27908 was published Apr 19, 2022
Multiple exploitable SQL injection vulnerabilities exist in the 'entities/fields' page of the... High Unreviewed
CVE-2020-13590 was published Apr 19, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27368 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27365 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27367 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27369 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via... High Unreviewed
CVE-2022-27366 was published Apr 16, 2022
A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) extension of MA prior to 5... High Unreviewed
CVE-2022-1258 was published Apr 15, 2022
A SQL injection vulnerability exists in the HelpdeskEmailActions.aspx functionality of Lansweeper... High Unreviewed
CVE-2022-22149 was published Apr 15, 2022
An SQL injection vulnerability exists in the EchoAssets.aspx functionality of Lansweeper... High Unreviewed
CVE-2022-21234 was published Apr 15, 2022
An SQL injection vulnerability exists in the AssetActions.aspx functionality of Lansweeper... High Unreviewed
CVE-2022-21210 was published Apr 15, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27386 was published Apr 13, 2022
An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of... High Unreviewed
CVE-2022-27385 was published Apr 13, 2022
An issue in the component Arg_comparator::compare_real_fixed of MariaDB Server v10.6.2 and below... High Unreviewed
CVE-2022-27379 was published Apr 13, 2022
An issue in the component my_decimal::operator= of MariaDB Server v10.6.3 and below was... High Unreviewed
CVE-2022-27380 was published Apr 13, 2022
An issue in the component Field::set_default of MariaDB Server v10.6 and below was discovered to... High Unreviewed
CVE-2022-27381 was published Apr 13, 2022
An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was... High Unreviewed
CVE-2022-27378 was published Apr 13, 2022
An issue in the component Item_subselect::init_expr_cache_tracker of MariaDB Server v10.6 and... High Unreviewed
CVE-2022-27384 was published Apr 13, 2022
Due to lack of protection, parameter student_id in OpenSIS Classic 8.0 /modules/eligibility... High Unreviewed
CVE-2022-27041 was published Apr 12, 2022
The Advanced Booking Calendar WordPress plugin before 1.7.1 does not sanitise and escape the id... High Unreviewed
CVE-2022-1006 was published Apr 12, 2022
The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly... High Unreviewed
CVE-2022-1023 was published Apr 12, 2022
Car Rental System v1.0 was discovered to contain a SQL injection vulnerability at /Car_Rental... High Unreviewed
CVE-2022-28000 was published Apr 9, 2022
Zoo Management System v1.0 was discovered to contain a SQL injection vulnerability at ... High Unreviewed
CVE-2022-27992 was published Apr 9, 2022
An issue was discovered in ZZCMS 2021. There is a SQL injection vulnerability in ad_manage.php. High Unreviewed
CVE-2021-46436 was published Apr 9, 2022
ASUS RT-AX56U’s SQL handling function has an SQL injection vulnerability due to insufficient user... High Unreviewed
CVE-2022-23972 was published Apr 8, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database