GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,259
Composer 4,354
Erlang 31
GitHub Actions 22
Go 2,120
Maven 5,293
npm 3,779
NuGet 681
pip 3,460
Pub 12
RubyGems 892
Rust 888
Swift 38

Unreviewed advisories

All unreviewed 243,868

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

2,710 advisories

Filter by severity

Sort by

Least recently updated

IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially... Moderate Unreviewed

CVE-2016-8929 was published May 17, 2022

SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary... Moderate Unreviewed

CVE-2015-4713 was published May 17, 2022

SQL injection vulnerability in the Store Locator (locator) extension before 3.3.1 for TYPO3... Moderate Unreviewed

CVE-2015-4610 was published May 17, 2022

SQL injection vulnerability in application/controllers/admin/questiongroups.php in LimeSurvey... Moderate Unreviewed

CVE-2015-4628 was published May 17, 2022

SQL injection vulnerability in the Solution Engine in Cisco Secure Access Control Server (ACS) 5... Moderate Unreviewed

CVE-2015-6345 was published May 17, 2022

SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1... Moderate Unreviewed

CVE-2015-4222 was published May 17, 2022

SQL injection vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 and earlier allows remote... Moderate Unreviewed

CVE-2016-4507 was published May 17, 2022

SQL injection vulnerability in the web framework in Cisco Prime Collaboration Assurance 10.5(1)... Moderate Unreviewed

CVE-2015-6331 was published May 17, 2022

The affected product is vulnerable to two SQL injections that require high privileges for... Moderate Unreviewed

CVE-2022-2137 was published Jul 23, 2022

SQL injection vulnerability in Cisco Unified MeetingPlace 8.6(1.2) allows remote authenticated... Moderate Unreviewed

CVE-2015-4233 was published May 17, 2022

SQL injection vulnerability in zp-core/zp-extensions/wordpress_import.php in Zenphoto before 1.4... Moderate Unreviewed

CVE-2013-7242 was published May 17, 2022

SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and... Moderate Unreviewed

CVE-2017-3899 was published May 17, 2022

The Big SQL component in IBM InfoSphere BigInsights 3.0 through 3.0.0.2 allows remote... Moderate Unreviewed

CVE-2015-1889 was published May 17, 2022

IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially... Moderate Unreviewed

CVE-2016-5939 was published May 17, 2022

SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420... Moderate Unreviewed

CVE-2022-32246 was published Jul 13, 2022

The affected product is vulnerable to a SQL injection with high attack complexity, which may... Moderate Unreviewed

CVE-2022-2142 was published Jul 23, 2022

The application Piwigo is affected by a SQL injection vulnerability in version 2.9.0 and possibly... Moderate Unreviewed

CVE-2017-9463 was published May 17, 2022

Command Centre Server is vulnerable to SQL Injection via Windows Registry settings for date... Moderate Unreviewed

CVE-2022-26348 was published Jul 7, 2022

TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1, 7.6.x before 7.6.1, 7.7.x before 7... Moderate Unreviewed

CVE-2017-5527 was published May 17, 2022

A vulnerability in the Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager ... Moderate Unreviewed

CVE-2017-6698 was published May 17, 2022

Vulnerabilities in the web-based GUI of Cisco Unified Communications Domain Manager (CUCDM) could... Moderate Unreviewed

CVE-2017-6668 was published May 17, 2022

IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of... Moderate Unreviewed

CVE-2022-22389 was published Jun 25, 2022

SQL injection vulnerability in the AssetView for MacOS Ver.9.2.0 and earlier versions allows... Moderate Unreviewed

CVE-2017-2241 was published May 17, 2022

IBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0 is vulnerable to... Moderate Unreviewed

CVE-2022-22463 was published Jul 9, 2022

SQL injection vulnerability in admin.php in Libera CMS 1.12, when magic_quotes_gpc is disabled,... Moderate Unreviewed

CVE-2008-4701 was published May 17, 2022

Previous 1 2 … 104 105 106 107 108 109 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,710 advisories