GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,847
Composer 4,870
Erlang 36
GitHub Actions 36
Go 2,493
Maven 5,932
npm 4,128
NuGet 735
pip 3,944
Pub 12
RubyGems 945
Rust 1,024
Swift 39

Unreviewed advisories

All unreviewed 269,227

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,073 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL Injection exists in Task Rabbit Clone 1.0 via the single_blog.php id parameter. Critical Unreviewed

CVE-2018-6363 was published May 13, 2022

PHP remote file inclusion vulnerability in public/patch/patch.php in Project Pier 0.8.8 and... Critical Unreviewed

CVE-2018-10759 was published May 13, 2022

SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2,... Critical Unreviewed

CVE-2018-7315 was published May 13, 2022

An issue was discovered in DuomiCMS 3.0. SQL injection exists in the ajax.php file, as... Critical Unreviewed

CVE-2018-18084 was published May 13, 2022

K-iwi Framework 1775 has SQL Injection via the admin/user/group/update user_group_id parameter or... Critical Unreviewed

CVE-2018-18755 was published May 13, 2022

MyBatis PageHelper vulnerable to time-blind SQL injection via orderBy parameter Critical

CVE-2022-28111 was published for com.github.pagehelper:pagehelper (Maven) May 5, 2022

A vulnerability was found in tynx wuersch and classified as critical. Affected by this issue is... Critical Unreviewed

CVE-2015-10066 was published Jan 18, 2023

A vulnerability was found in MNBikeways database and classified as critical. This issue affects... Critical Unreviewed

CVE-2015-10060 was published Jan 17, 2023

A vulnerability has been identified in SINEC NMS (All versions). A privileged authenticated... High Unreviewed

CVE-2022-24281 was published Mar 9, 2022

PHPSHE 1.7 has SQL injection via the admin.php?mod=order state parameter. High Unreviewed

CVE-2019-6708 was published May 13, 2022

PHPSHE 1.7 has SQL injection via the admin.php?mod=product&act=state product_id[] parameter. High Unreviewed

CVE-2019-6707 was published May 13, 2022

SuiteCRM before 7.12.2 and 8.x before 8.0.1 allows authenticated SQL injection. High Unreviewed

CVE-2021-45041 was published Dec 20, 2021

The checkuser function of SEMCMS 3.8 was discovered to contain a vulnerability which allows... High Unreviewed

CVE-2020-18081 was published Dec 18, 2021

Online Magazine Management System 1.0 contains a SQL injection authentication bypass... Critical Unreviewed

CVE-2021-44653 was published Dec 16, 2021

There is an upload sql injection vulnerability in the background of taocms 3.0.2 in parameter id... Critical Unreviewed

CVE-2021-45014 was published Dec 15, 2021

If configured to use an Oracle database and if a query is created using the flexible search java... Critical Unreviewed

CVE-2021-42064 was published Dec 15, 2021

The mediamaticAjaxRenameCategory AJAX action of the Mediamatic WordPress plugin through 2.7,... High Unreviewed

CVE-2021-24848 was published Dec 14, 2021

The SEO Booster WordPress plugin through 3.7 allows for authenticated SQL injection via the ... High Unreviewed

CVE-2021-24747 was published Dec 14, 2021

The Quotes Collection WordPress plugin through 2.5.2 does not validate and escape the bulkcheck... High Unreviewed

CVE-2021-24861 was published Dec 14, 2021

An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, abd 2021 in dl/dl_download.php.... High Unreviewed

CVE-2021-40282 was published Dec 10, 2021

A SQL Injection in the custom filter query component in Genesys intelligent Workload Distribution... High Unreviewed

CVE-2021-40860 was published Dec 9, 2021

A SQL Injection vulnerability exists in Ivanti Avalance before 6.3.3 allows an attacker with... High Unreviewed

CVE-2021-42131 was published Dec 8, 2021

An SQL Injection vulnerablitly exits in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in... High Unreviewed

CVE-2021-40280 was published Dec 10, 2021

An SQL Injection vulnerability exists in zzcms 8.2, 8.3, 2020, and 2021 via the id parameter in... High Unreviewed

CVE-2021-40279 was published Dec 10, 2021

A vulnerability was found in nickzren alsdb. It has been rated as critical. This issue affects... Critical Unreviewed

CVE-2016-15021 was published Jan 17, 2023

Previous 1…396…400 Next

Previous 1 2 … 394 395 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,073 advisories