GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,934
Composer 4,780
Erlang 36
GitHub Actions 29
Go 2,344
Maven 5,665
npm 3,973
NuGet 719
pip 3,770
Pub 12
RubyGems 923
Rust 978
Swift 38

Unreviewed advisories

All unreviewed 260,064

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

14,547 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute... High Unreviewed

CVE-2010-4800 was published May 17, 2022

SQL injection vulnerability in index.php in MySource Matrix allows remote attackers to execute... High Unreviewed

CVE-2010-4639 was published May 17, 2022

Multiple SQL injection vulnerabilities in Collaborative Information Manager server, as used in... High Unreviewed

CVE-2010-4496 was published May 17, 2022

Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow remote attackers to... High Unreviewed

CVE-2010-4615 was published May 17, 2022

SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows... High Unreviewed

CVE-2010-4619 was published May 17, 2022

A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as... High Unreviewed

CVE-2022-2214 was published Jun 28, 2022

SQL injection vulnerability in the JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for... High Unreviewed

CVE-2010-4795 was published May 17, 2022

SQL injection vulnerability in detail.asp in Site2Nite Business e-Listings allows remote... High Unreviewed

CVE-2010-4636 was published May 17, 2022

SQL injection vulnerability in XWiki Enterprise before 2.5 allows remote attackers to execute... High Unreviewed

CVE-2010-4641 was published May 17, 2022

Slims9 Bulian 9.4.2 is affected by SQL injection in lib/comment.inc.php. User data can be obtained. High Unreviewed

CVE-2021-45793 was published Mar 18, 2022

Slims9 Bulian 9.4.2 is affected by SQL injection in /admin/modules/system/backup.php. User data... High Unreviewed

CVE-2021-45794 was published Mar 18, 2022

Slims8 Akasia 8.3.1 is affected by SQL injection in /admin/modules/bibliography/index.php, /admin... High Unreviewed

CVE-2021-45791 was published Mar 18, 2022

Taocms v3.0.2 was discovered to contain a SQL injection vulnerability via the id parameter in ... Critical Unreviewed

CVE-2022-25505 was published Mar 22, 2022

The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST... Critical Unreviewed

CVE-2022-0739 was published Mar 22, 2022

Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries... Moderate Unreviewed

CVE-2022-25223 was published Mar 24, 2022

The Simple Link Directory WordPress plugin before 7.7.2 does not validate and escape the post_id... Critical Unreviewed

CVE-2022-0760 was published Mar 22, 2022

Money Transfer Management System Version 1.0 allows an unauthenticated user to inject SQL queries... Critical Unreviewed

CVE-2022-25222 was published Mar 24, 2022

Authenticated (author or higher user role) SQL Injection (SQLi) vulnerability discovered in FV... High Unreviewed

CVE-2022-25607 was published Mar 19, 2022

CmsWing 1.3.7 is affected by a SQLi vulnerability via parameter: behavior rule. Critical Unreviewed

CVE-2021-43735 was published Mar 24, 2022

The AosService.rem service in Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier... Critical Unreviewed

CVE-2021-27468 was published Mar 24, 2022

Simple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2022-26283 was published Mar 23, 2022

A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated... High Unreviewed

CVE-2022-0386 was published Mar 23, 2022

The Advanced Booking Calendar WordPress plugin before 1.7.0 does not validate and escape the... Critical Unreviewed

CVE-2022-0694 was published Mar 22, 2022

A vulnerability exists in the RunSearch function of SearchService service in Rockwell Automation... Critical Unreviewed

CVE-2021-27472 was published Mar 24, 2022

WebRun 3.6.0.42 is vulnerable to SQL Injection via the P_0 parameter used to set the username... Critical Unreviewed

CVE-2021-43650 was published Mar 23, 2022

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

14,547 advisories