Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,073 advisories

Loading
The Secure Copy Content Protection and Content Locking WordPress plugin before 2.8.2 does not... Critical Unreviewed
CVE-2021-24931 was published Feb 11, 2022
CA Network Flow Analysis (NFA) 21.2.1 and earlier contain a SQL injection vulnerability in the... Moderate Unreviewed
CVE-2021-44050 was published Dec 3, 2021
A vulnerability classified as critical was found in visegripped Stracker. Affected by this... Critical Unreviewed
CVE-2022-4889 was published Jan 15, 2023
A vulnerability was found in bmattoso desafio_buzz_woody. It has been rated as critical. This... Critical Unreviewed
CVE-2015-10048 was published Jan 15, 2023
A vulnerability was found in KYUUBl school-register. It has been classified as critical. This... Critical Unreviewed
CVE-2015-10047 was published Jan 15, 2023
A vulnerability was found in brandonfire miRNA_Database_by_PHP_MySql. It has been declared as... Critical Unreviewed
CVE-2015-10050 was published Jan 15, 2023
A vulnerability classified as critical was found in gophergala sqldump. This vulnerability... Critical Unreviewed
CVE-2015-10044 was published Jan 15, 2023
A SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as... Critical Unreviewed
CVE-2021-41677 was published Dec 1, 2021
A SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as... Critical Unreviewed
CVE-2021-41678 was published Dec 1, 2021
The Contest Gallery WordPress plugin before 13.1.0.6 does not have capability checks and does not... Critical Unreviewed
CVE-2021-24915 was published Nov 30, 2021
Hospital Management System v1.0 is vulnerable to SQL Injection. Attackers can gain administrator... High Unreviewed
CVE-2022-46093 was published Jan 14, 2023
SQL Injection in rosariosis Critical
CVE-2021-44427 was published for francoisjacquet/rosariosis (Composer) Dec 2, 2021
The SQL injection vulnerability in the Hide My WP WordPress plugin (versions <= 6.2.3) is... Critical Unreviewed
CVE-2021-36916 was published Nov 25, 2021
An authentication bypass vulnerability in all versions of ValuePLUS Integrated University... Critical Unreviewed
CVE-2019-11196 was published May 13, 2022
Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2022-36693 was published Aug 26, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed
CVE-2020-15624 was published May 24, 2022
The unprivileged user portal part of CentOS Web Panel is affected by a SQL Injection via the ... Critical Unreviewed
CVE-2021-31316 was published May 24, 2022
Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function... High Unreviewed
CVE-2021-25784 was published Dec 4, 2021
SQL Injection vulnerability exists in TuziCMS v2.0.6 in App\Manage\Controller\GuestbookController... Critical Unreviewed
CVE-2021-44347 was published Dec 4, 2021
ecshop v2.7.3 is affected by a SQL injection vulnerability in shopex\ecshop\upload\api\client\api... Critical Unreviewed
CVE-2021-43679 was published Dec 3, 2021
The myCred WordPress plugin before 2.3 does not validate or escape the fields parameter before... High Unreviewed
CVE-2021-24755 was published Nov 30, 2021
The Email Before Download WordPress plugin before 6.8 does not properly validate and escape the... High Unreviewed
CVE-2021-24748 was published Nov 30, 2021
An authenticated user could potentially execute code via an SQLi vulnerability in the user portal... High Unreviewed
CVE-2021-36807 was published Nov 27, 2021
Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function... High Unreviewed
CVE-2021-25783 was published Dec 4, 2021
SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameter in App\Manage... Critical Unreviewed
CVE-2021-44349 was published Dec 4, 2021
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database