Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

13,130 advisories

Loading
Multiple SQL injection vulnerabilities in giris.asp in Aspee and Dogantepe Ziyaretci Defteri... High Unreviewed
CVE-2006-6337 was published May 1, 2022
SQL injection vulnerability in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02... Moderate Unreviewed
CVE-2006-6706 was published May 1, 2022
Unauth. SQL Injection (SQLi) vulnerability in Advanced Booking Calendar plugin <= 1.7.1 on... Critical Unreviewed
CVE-2022-45822 was published Dec 5, 2022
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via... High Unreviewed
CVE-2022-36675 was published Sep 2, 2022
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via... High Unreviewed
CVE-2022-36674 was published Sep 2, 2022
Clinic's Patient Management System v1.0 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2022-36609 was published Sep 3, 2022
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in... Critical Unreviewed
CVE-2022-44290 was published Dec 2, 2022
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via... High Unreviewed
CVE-2022-36676 was published Sep 2, 2022
Garage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id... High Unreviewed
CVE-2022-36636 was published Sep 3, 2022
Mapper v4.0.0 to v4.2.0 was discovered to contain a SQL injection vulnerability via the ids... Critical Unreviewed
CVE-2022-36594 was published Sep 3, 2022
SQL injection vulnerability in editpoll.php in Powie's PHP Forum (pForum) 1.29a and earlier... High Unreviewed
CVE-2006-6038 was published May 1, 2022
** DISPUTED ** Multiple SQL injection vulnerabilities in INFINICART allow remote attackers to... High Unreviewed
CVE-2006-5957 was published May 1, 2022
SQL injection vulnerability in mystats.php in MyStats 1.0.8 and earlier allows remote attackers... High Unreviewed
CVE-2006-6402 was published May 1, 2022
Multiple SQL injection vulnerabilities in detail.asp in DUware DUdownload 1.1, and possibly... High Unreviewed
CVE-2006-6367 was published May 1, 2022
Multiple SQL injection vulnerabilities in ActiveNews Manager allow remote attackers to execute... High Unreviewed
CVE-2006-6095 was published May 1, 2022
SQL injection vulnerability in index.php in ContentNow 1.39 and earlier allows remote attackers... High Unreviewed
CVE-2006-6157 was published May 1, 2022
SQL injection vulnerability in index.php in Etomite CMS 0.6.1.2, when magic_quotes_gpc is... Moderate Unreviewed
CVE-2006-6048 was published May 1, 2022
Multiple SQL injection vulnerabilities in Enthrallweb eShopping Cart allow remote attackers to... High Unreviewed
CVE-2006-6073 was published May 1, 2022
Multiple SQL injection vulnerabilities in All In One Control Panel (AIOCP) 1.3.007 and earlier... Moderate Unreviewed
CVE-2006-5829 was published May 1, 2022
SQL Injection vulnerability in asith-eranga ISIC tour booking through version published on Feb... Critical Unreviewed
CVE-2022-30528 was published Dec 1, 2022
A post-auth read-only SQL injection vulnerability allows users to read non-sensitive... Moderate Unreviewed
CVE-2022-3711 was published Dec 1, 2022
Agentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php check function. Critical Unreviewed
CVE-2020-35846 was published May 24, 2022
Online Ordering System v2.3.2 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2022-36581 was published Sep 1, 2022
A post-auth read-only SQL injection vulnerability allows API clients to read non-sensitive... Low Unreviewed
CVE-2022-3710 was published Dec 1, 2022
SQL injection vulnerability in blog/edit.php in Moodle 1.6.1 and earlier allows remote attackers... High Unreviewed
CVE-2006-4785 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database