Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,073 advisories

Loading
b2evolution CMS v7.2.3 was discovered to contain a SQL injection vulnerability via the parameter... Critical Unreviewed
CVE-2021-31632 was published Dec 7, 2021
The WP Data Access WordPress plugin before 5.0.0 does not properly sanitise and escape the... Critical Unreviewed
CVE-2021-24866 was published Dec 7, 2021
An authenticated SQL injection issue in the calendar search function of OpenEMR 6.0.0 before... Moderate Unreviewed
CVE-2021-41843 was published Dec 18, 2021
A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0 and... Critical Unreviewed
CVE-2023-0324 was published Jan 16, 2023
A vulnerability, which was classified as critical, was found in githuis P2Manage. This affects... Critical Unreviewed
CVE-2015-10054 was published Jan 16, 2023
TCMAN GIM is vulnerable to a SQL injection vulnerability inside several available webservice... Critical Unreviewed
CVE-2021-40850 was published Dec 18, 2021
A vulnerability was found in krail-jpa up to 0.9.1. It has been classified as critical. This... Critical Unreviewed
CVE-2016-15018 was published Jan 15, 2023
A vulnerability classified as critical has been found in karsany OBridge up to 1.3. Affected is... Critical Unreviewed
CVE-2018-25075 was published Jan 15, 2023
A vulnerability was found in evandro-machado Trabalho-Web2. It has been classified as critical.... Critical Unreviewed
CVE-2015-10061 was published Jan 17, 2023
Authenticated Blind & Error-based SQL injection vulnerability was discovered in Online Enrollment... High Unreviewed
CVE-2021-40578 was published Dec 8, 2021
SQL injection in prestashop/prestashop High
CVE-2021-43789 was published for prestashop/prestashop (Composer) Dec 7, 2021
PierreRambaud
A vulnerability was found in ollpu parontalli. It has been classified as critical. Affected is an... Critical Unreviewed
CVE-2017-20170 was published Jan 17, 2023
A vulnerability was found in NethServer phonenehome. It has been rated as critical. This issue... Critical Unreviewed
CVE-2021-4313 was published Jan 16, 2023
The Registrations for the Events Calendar WordPress plugin before 2.7.6 does not sanitise and... Critical Unreviewed
CVE-2021-24943 was published Dec 7, 2021
A SQL Injection vulnerability exists in ZZCMS 2021 via the askbigclassid parameter in /admin/ask... Critical Unreviewed
CVE-2021-42945 was published Dec 16, 2021
A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been... Critical Unreviewed
CVE-2023-0332 was published Jan 17, 2023
Online Pre-owned/Used Car Showroom Management System 1.0 contains a SQL injection authentication... Critical Unreviewed
CVE-2021-44655 was published Dec 16, 2021
A vulnerability, which was classified as critical, was found in tutrantta project_todolist.... Critical Unreviewed
CVE-2015-10045 was published Jan 15, 2023
A vulnerability was found in agy pontifex.http. It has been declared as critical. This... Critical Unreviewed
CVE-2014-125079 was published Jan 15, 2023
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15621 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15627 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15628 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15626 was published May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15625 was published May 24, 2022
The Modern Events Calendar Lite WordPress plugin before 6.1.5 does not sanitise and escape the... Critical Unreviewed
CVE-2021-24946 was published Dec 14, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database