Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,109
Maven
5,000+
npm
3,765
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
887
Swift
37
Unreviewed advisories
All unreviewed
5,000+

13,176 advisories

Loading
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is... Moderate Unreviewed
CVE-2010-4751 was published May 17, 2022
SQL injection vulnerability in infusions/mg_user_fotoalbum_panel/mg_user_fotoalbum.php in the MG... High Unreviewed
CVE-2010-4791 was published May 17, 2022
SQL injection vulnerability in detail.asp in Site2Nite Vacation Rental (VRBO) Listings allows... High Unreviewed
CVE-2010-4635 was published May 17, 2022
Multiple SQL injection vulnerabilities in Collaborative Information Manager server, as used in... High Unreviewed
CVE-2010-4496 was published May 17, 2022
SQL injection vulnerability in index.php in MySource Matrix allows remote attackers to execute... High Unreviewed
CVE-2010-4639 was published May 17, 2022
SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute... High Unreviewed
CVE-2010-4800 was published May 17, 2022
Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow remote attackers to... High Unreviewed
CVE-2010-4615 was published May 17, 2022
SQL injection vulnerability in cart.php in digiSHOP 2.0.2 allows remote attackers to execute... High Unreviewed
CVE-2010-4633 was published May 17, 2022
SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows... High Unreviewed
CVE-2010-4619 was published May 17, 2022
SQL injection vulnerability in the JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for... High Unreviewed
CVE-2010-4795 was published May 17, 2022
A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as... High Unreviewed
CVE-2022-2214 was published Jun 28, 2022
SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote... High Unreviewed
CVE-2010-4636 was published May 17, 2022
SQL injection vulnerability in XWiki Enterprise before 2.5 allows remote attackers to execute... High Unreviewed
CVE-2010-4641 was published May 17, 2022
Slims9 Bulian 9.4.2 is affected by SQL injection in /admin/modules/system/backup.php. User data... High Unreviewed
CVE-2021-45794 was published Mar 18, 2022
Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.php. User data can be obtained. High Unreviewed
CVE-2021-45793 was published Mar 18, 2022
Slims8 Akasia 8.3.1 is affected by SQL injection in /admin/modules/bibliography/index.php, /admin... High Unreviewed
CVE-2021-45791 was published Mar 18, 2022
The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST... Critical Unreviewed
CVE-2022-0739 was published Mar 22, 2022
Taocms v3.0.2 was discovered to contain a SQL injection vulnerability via the id parameter in ... Critical Unreviewed
CVE-2022-25505 was published Mar 22, 2022
Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries... Moderate Unreviewed
CVE-2022-25223 was published Mar 24, 2022
Money Transfer Management System Version 1.0 allows an unauthenticated user to inject SQL queries... Critical Unreviewed
CVE-2022-25222 was published Mar 24, 2022
The Simple Link Directory WordPress plugin before 7.7.2 does not validate and escape the post_id... Critical Unreviewed
CVE-2022-0760 was published Mar 22, 2022
Authenticated (author or higher user role) SQL Injection (SQLi) vulnerability discovered in FV... High Unreviewed
CVE-2022-25607 was published Mar 19, 2022
The Advanced Booking Calendar WordPress plugin before 1.7.0 does not validate and escape the... Critical Unreviewed
CVE-2022-0694 was published Mar 22, 2022
The AosService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier... Critical Unreviewed
CVE-2021-27468 was published Mar 24, 2022
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated... High Unreviewed
CVE-2022-0386 was published Mar 23, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database