Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,494
Maven
5,000+
npm
4,129
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

7,080 advisories

Loading
Zoho ManageEngine OpManager before 125588 (and before 125603) is vulnerable to authenticated SQL... High Unreviewed
CVE-2022-27908 was published Apr 19, 2022
Multiple exploitable SQL injection vulnerabilities exist in the 'entities/fields' page of the... High Unreviewed
CVE-2020-13590 was published Apr 19, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27368 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27365 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via... High Unreviewed
CVE-2022-27366 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27369 was published Apr 16, 2022
Cscms Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-27367 was published Apr 16, 2022
A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) extension of MA prior to 5... High Unreviewed
CVE-2022-1258 was published Apr 15, 2022
An SQL injection vulnerability exists in the EchoAssets.aspx functionality of Lansweeper... High Unreviewed
CVE-2022-21234 was published Apr 15, 2022
A SQL injection vulnerability exists in the HelpdeskEmailActions.aspx functionality of Lansweeper... High Unreviewed
CVE-2022-22149 was published Apr 15, 2022
An SQL injection vulnerability exists in the AssetActions.aspx functionality of Lansweeper... High Unreviewed
CVE-2022-21210 was published Apr 15, 2022
SQL Injection in Pimcore High
CVE-2022-1339 was published for pimcore/pimcore (Composer) Apr 14, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27386 was published Apr 13, 2022
An issue in the component Field::set_default of MariaDB Server v10.6 and below was discovered to... High Unreviewed
CVE-2022-27381 was published Apr 13, 2022
An issue in the component Arg_comparator::compare_real_fixed of MariaDB Server v10.6.2 and below... High Unreviewed
CVE-2022-27379 was published Apr 13, 2022
An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of... High Unreviewed
CVE-2022-27385 was published Apr 13, 2022
An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was... High Unreviewed
CVE-2022-27378 was published Apr 13, 2022
An issue in the component my_decimal::operator= of MariaDB Server v10.6.3 and below was... High Unreviewed
CVE-2022-27380 was published Apr 13, 2022
An issue in the component Item_subselect::init_expr_cache_tracker of MariaDB Server v10.6 and... High Unreviewed
CVE-2022-27384 was published Apr 13, 2022
Due to lack of protection, parameter student_id in OpenSIS Classic 8.0 /modules/eligibility... High Unreviewed
CVE-2022-27041 was published Apr 12, 2022
The Advanced Booking Calendar WordPress plugin before 1.7.1 does not sanitise and escape the id... High Unreviewed
CVE-2022-1006 was published Apr 12, 2022
The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly... High Unreviewed
CVE-2022-1023 was published Apr 12, 2022
SQL Injection in Pimcore High
CVE-2022-1219 was published for pimcore/pimcore (Composer) Apr 9, 2022
Car Rental System v1.0 was discovered to contain a SQL injection vulnerability at /Car_Rental... High Unreviewed
CVE-2022-28000 was published Apr 9, 2022
An issue was discovered in ZZCMS 2021. There is a SQL injection vulnerability in ad_manage.php. High Unreviewed
CVE-2021-46436 was published Apr 9, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database