Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,128
NuGet
735
pip
3,944
Pub
12
RubyGems
945
Rust
1,024
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,073 advisories

Loading
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/?page... High Unreviewed
CVE-2022-30411 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30402 was published May 14, 2022
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/classes... Critical Unreviewed
CVE-2022-30413 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30396 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30386 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30387 was published May 14, 2022
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages... Moderate Unreviewed
CVE-2018-17092 was published May 13, 2022
ZKteco ZKBioSecurity V5000 4.1.3 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-36635 was published Oct 8, 2022
The Cryptocurrency Widgets Pack WordPress plugin through 1.8.1 does not sanitise and escape some... Critical Unreviewed
CVE-2022-4059 was published Jan 3, 2023
The LetsRecover WordPress plugin through 1.1.0 does not properly sanitise and escape a parameter... High Unreviewed
CVE-2022-4355 was published Jan 3, 2023
aEnrich a+HRD has insufficient user input validation for specific API parameter. An... Critical Unreviewed
CVE-2022-39041 was published Jan 3, 2023
The Qe SEO Handyman WordPress plugin through 1.0 does not properly sanitize and escape a... High Unreviewed
CVE-2022-4351 was published Jan 3, 2023
The Web Invoice WordPress plugin through 2.1.3 does not properly sanitize and escape a parameter... High Unreviewed
CVE-2022-4371 was published Jan 3, 2023
The WP User WordPress plugin through 7.0 does not properly sanitize and escape a parameter before... Critical Unreviewed
CVE-2022-4049 was published Jan 3, 2023
The Joy Of Text Lite WordPress plugin before 2.3.1 does not properly sanitise and escape some... Critical Unreviewed
CVE-2022-4099 was published Jan 3, 2023
The Qe SEO Handyman WordPress plugin through 1.0 does not properly sanitize and escape a... High Unreviewed
CVE-2022-4352 was published Jan 3, 2023
The Visual Email Designer for WooCommerce WordPress plugin before 1.7.2 does not properly... High Unreviewed
CVE-2022-3860 was published Jan 3, 2023
The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a... High Unreviewed
CVE-2022-4358 was published Jan 3, 2023
** UNSUPPPORTED WHEN ASSIGNED **** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in... Critical Unreviewed
CVE-2015-10008 was published Jan 2, 2023
A vulnerability has been found in IS_Projecto2 and classified as critical. This vulnerability... Critical Unreviewed
CVE-2014-125038 was published Jan 2, 2023
The multimedial images WordPress plugin through 1.0b does not properly sanitize and escape a... High Unreviewed
CVE-2022-4370 was published Jan 3, 2023
Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to... High Unreviewed
CVE-2022-34324 was published Jan 1, 2023
A vulnerability, which was classified as critical, was found in License to Kill. This affects an... Critical Unreviewed
CVE-2014-125037 was published Jan 2, 2023
A vulnerability classified as critical has been found in Hesburgh Libraries of Notre Dame Sipity.... Critical Unreviewed
CVE-2021-4298 was published Jan 2, 2023
The Quote-O-Matic WordPress plugin through 1.0.5 does not properly sanitize and escape a... High Unreviewed
CVE-2022-4373 was published Jan 3, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database