Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,779
Erlang
36
GitHub Actions
29
Go
2,338
Maven
5,000+
npm
3,972
NuGet
714
pip
3,769
Pub
12
RubyGems
923
Rust
976
Swift
38
Unreviewed advisories
All unreviewed
5,000+

14,540 advisories

Loading
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via... Critical Unreviewed
CVE-2017-1002013 was published May 17, 2022
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in... Critical Unreviewed
CVE-2017-1002014 was published May 17, 2022
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in... Critical Unreviewed
CVE-2017-1002015 was published May 17, 2022
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager ... Moderate Unreviewed
CVE-2015-1491 was published May 17, 2022
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an... Critical Unreviewed
CVE-2017-14512 was published May 17, 2022
Vulnerability in wordpress plugin add-edit-delete-listing-for-member-module v1.0, The plugin... High Unreviewed
CVE-2017-1002025 was published May 17, 2022
Multiple SQL injection vulnerabilities in the User Dashboard module 7.x before 7.x-1.4 for Drupal... Critical Unreviewed
CVE-2015-7877 was published May 17, 2022
Vulnerability in wordpress plugin Easy Team Manager v1.3.2, The code does not sanitize id before... Critical Unreviewed
CVE-2017-1002023 was published May 17, 2022
Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified... Critical Unreviewed
CVE-2017-1002010 was published May 17, 2022
Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified... Critical Unreviewed
CVE-2017-1002009 was published May 17, 2022
In osTicket before 1.10.1, SQL injection is possible by constructing an array via use of square... Critical Unreviewed
CVE-2017-14396 was published May 17, 2022
SQL Injection exists in tianchoy/blog through 2017-09-12 via the id parameter to view.php. Critical Unreviewed
CVE-2017-14345 was published May 17, 2022
SQL injection vulnerability in graphs.php in Cacti before 0.8.8e allows remote attackers to... High Unreviewed
CVE-2015-4634 was published May 17, 2022
Multiple SQL injection vulnerabilities in the Helpdesk Pro plugin before 1.4.0 for Joomla! allow... Critical Unreviewed
CVE-2015-4073 was published May 17, 2022
Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $_GET[... Moderate Unreviewed
CVE-2017-14600 was published May 17, 2022
Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $_GET[... Moderate Unreviewed
CVE-2017-14601 was published May 17, 2022
Multiple SQL injection vulnerabilities in interface PHP scripts in the Manager component in... Moderate Unreviewed
CVE-2014-9229 was published May 17, 2022
A SQL injection vulnerability exists in Schneider Electric's U.motion Builder software versions 1... Critical Unreviewed
CVE-2017-7973 was published May 17, 2022
SQL injection vulnerability in the actualite module 1.0 for Joomla! allows remote attackers to... High Unreviewed
CVE-2008-4617 was published May 17, 2022
SQL injection vulnerability in Meeting Room Booking System (MRBS) before 1.4 allows remote... High Unreviewed
CVE-2008-4620 was published May 17, 2022
SQL injection vulnerability in forums.asp in PortalApp 4.0 allows remote attackers to execute... High Unreviewed
CVE-2008-4613 was published May 17, 2022
SQL injection vulnerability in stnl_iframe.php in the ShiftThis Newsletter (st_newsletter) plugin... High Unreviewed
CVE-2008-4625 was published May 17, 2022
SQL injection vulnerability in the DS-Syndicate (com_ds-syndicate) component 1.1.1 for Joomla... High Unreviewed
CVE-2008-4623 was published May 17, 2022
SQL injection vulnerability in bannerclick.php in ZeeScripts Zeeproperty allows remote attackers... High Unreviewed
CVE-2008-4621 was published May 17, 2022
SQL injection vulnerability in the rGallery plugin 1.09 for WoltLab Burning Board (WBB) allows... High Unreviewed
CVE-2008-4627 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database