GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,512
Composer 4,179
Erlang 31
GitHub Actions 19
Go 1,982
Maven 5,155
npm 3,701
NuGet 656
pip 3,323
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 233,001

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,132 advisories

Filter by severity

Sort by

Least recently updated

It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly... High Unreviewed

CVE-2020-14349 was published May 24, 2022

CentOS-WebPanel.com (aka CWP) CentOS Web Panel (for CentOS 6 and 7) allows SQL Injection via the ... High Unreviewed

CVE-2020-10230 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2020-15620 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2020-15616 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2020-15622 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2020-15617 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2020-15618 was published May 24, 2022

This vulnerability allows remote attackers to disclose sensitive information on affected... High Unreviewed

CVE-2020-15619 was published May 24, 2022

ZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can... High Unreviewed

CVE-2022-47745 was published Jan 19, 2023

Luocms v2.0 is affected by SQL Injection in /admin/manager/admin_mod.php. An attacker can obtain... High Unreviewed

CVE-2022-24601 was published Mar 11, 2022

Network Olympus version 1.8.0 allows an authenticated admin user to inject SQL queries in '/api... High Unreviewed

CVE-2022-25225 was published Mar 11, 2022

The login.jsp page of Quicklert for Digium 10.0.0 (1043) is affected by both Blind SQL Injection... High Unreviewed

CVE-2021-43969 was published Mar 11, 2022

Found a potential security vulnerability inside the Pandora API. Affected Pandora FMS version... High Unreviewed

CVE-2022-0507 was published Mar 11, 2022

The Event Manager and Tickets Selling for WooCommerce WordPress plugin before 3.5.8 does not... High Unreviewed

CVE-2022-0478 was published Mar 15, 2022

The Simple Quotation WordPress plugin through 1.3.2 does not have authorisation (and CSRF) checks... High Unreviewed

CVE-2022-22735 was published Mar 15, 2022

The WP Email Users WordPress plugin through 1.7.6 does not escape the data_raw parameter in the... High Unreviewed

CVE-2021-24959 was published Mar 15, 2022

HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in... High Unreviewed

CVE-2022-25491 was published Mar 16, 2022

A blind SQL injection vulnerability exists in Xbtit 3.1 via the sid parameter in ajaxchat... High Unreviewed

CVE-2021-45821 was published Mar 17, 2022

SQL injection vulnerability in the allCineVid component (com_allcinevid) 1.0.0 for Joomla! allows... High Unreviewed

CVE-2011-0511 was published May 17, 2022

SQL injection vulnerability in mainx_a.php in E-PROMPT C BetMore Site Suite 4.0 through 4.2.0... High Unreviewed

CVE-2011-0516 was published May 17, 2022

SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x... High Unreviewed

CVE-2011-0549 was published May 17, 2022

SQL injection vulnerability in data.php in PHPCMS 2008 V2 allows remote attackers to execute... High Unreviewed

CVE-2011-0645 was published May 17, 2022

Multiple SQL injection vulnerabilities in Domain Technologie Control (DTC) before 0.32.9 allow... High Unreviewed

CVE-2011-0434 was published May 17, 2022

SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote attackers to execute... High Unreviewed

CVE-2011-0646 was published May 17, 2022

SQL injection vulnerability in include/admin/model_field.class.php in PHPCMS 2008 V2 allows... High Unreviewed

CVE-2011-0644 was published May 17, 2022

Previous 1 2 3 4 5 … 245 246 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,132 advisories