GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,144
Composer 4,333
Erlang 31
GitHub Actions 22
Go 2,095
Maven 5,265
npm 3,760
NuGet 678
pip 3,446
Pub 12
RubyGems 892
Rust 882
Swift 37

Unreviewed advisories

All unreviewed 242,549

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,684 advisories

Filter by severity

Sort by

Least recently updated

Multiple vulnerabilities in Cisco Unified Communications Manager IM & Presence Service ... Moderate Unreviewed

CVE-2021-1282 was published May 24, 2022

SQL injection vulnerability in IBM WebSphere Commerce 6.0 before 6.0.0.10 allows remote... Moderate Unreviewed

CVE-2010-2635 was published May 17, 2022

Nokia Broadcast Message Center through 11.1.0 allows an authenticated user to perform a Boolean... Moderate Unreviewed

CVE-2021-35487 was published May 26, 2022

Multiple SQL injection vulnerabilities in OCS Inventory NG before 1.02.3 allow remote attackers... Moderate Unreviewed

CVE-2010-1733 was published May 17, 2022

The Nexos theme through 1.7 for WordPress allows side-map/?search_order= SQL Injection. Moderate Unreviewed

CVE-2020-15363 was published May 24, 2022

Improper Neutralization of Special Elements used in an SQL Command Pivotal Spring Data JPA Moderate

CVE-2016-6652 was published for org.springframework.data:spring-data-jpa (Maven) May 17, 2022

A vulnerability has been identified in Desigo Insight (All versions). The web service does not... Moderate Unreviewed

CVE-2020-15792 was published May 24, 2022

An exploitable SQL injection vulnerability exists in the unauthenticated portion of eFront LMS,... Moderate Unreviewed

CVE-2019-5070 was published May 24, 2022

SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows... Moderate Unreviewed

CVE-2022-36839 was published Aug 6, 2022

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.1.28... Moderate Unreviewed

CVE-2013-0375 was published May 5, 2022

SQL injection vulnerability in index.php in GaleriaSHQIP 1.0, when magic_quotes_gpc is disabled,... Moderate Unreviewed

CVE-2010-3207 was published May 17, 2022

zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php... Moderate Unreviewed

CVE-2022-27127 was published Apr 11, 2022

Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities... Moderate Unreviewed

CVE-2022-27991 was published Apr 9, 2022

Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability... Moderate Unreviewed

CVE-2022-24231 was published Apr 6, 2022

An SQL Injection vulnerability exists in oasys oa_system as of 9/7/2021 in resources/mappers... Moderate Unreviewed

CVE-2021-40644 was published Mar 31, 2022

An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey... Moderate Unreviewed

CVE-2021-40645 was published Mar 31, 2022

An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort-by parameter of the search... Moderate Unreviewed

CVE-2022-24956 was published Mar 30, 2022

SQL injection vulnerability in modules/sections/index.php in E-Xoopport Samsara 3.1 and earlier,... Moderate Unreviewed

CVE-2010-3467 was published May 17, 2022

Multiple SQL injection vulnerabilities in login.php in ApPHP PHP MicroCMS 1.0.1, when... Moderate Unreviewed

CVE-2010-3481 was published May 17, 2022

CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint ... Moderate Unreviewed

CVE-2021-43701 was published Mar 30, 2022

A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10... Moderate Unreviewed

CVE-2022-0842 was published Mar 24, 2022

Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries... Moderate Unreviewed

CVE-2022-25223 was published Mar 24, 2022

Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled... Moderate Unreviewed

CVE-2010-4799 was published May 17, 2022

SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is... Moderate Unreviewed

CVE-2010-4751 was published May 17, 2022

SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is... Moderate Unreviewed

CVE-2010-4752 was published May 17, 2022

Previous 1 2 … 104 105 106 107 108 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,684 advisories