GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,512
Composer 4,179
Erlang 31
GitHub Actions 19
Go 1,982
Maven 5,155
npm 3,701
NuGet 656
pip 3,323
Pub 11
RubyGems 882
Rust 834
Swift 35

Unreviewed advisories

All unreviewed 233,049

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

2,422 advisories

Filter by severity

Sort by

Least recently updated

CA Network Flow Analysis (NFA) 21.2.1 and earlier contain a SQL injection vulnerability in the... Moderate Unreviewed

CVE-2021-44050 was published Dec 3, 2021

An authenticated SQL injection issue in the calendar search function of OpenEMR 6.0.0 before... Moderate Unreviewed

CVE-2021-41843 was published Dec 18, 2021

A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated... Moderate Unreviewed

CVE-2021-21926 was published Dec 23, 2021

The All in One SEO WordPress plugin before 4.1.5.3 is affected by an authenticated SQL injection... Moderate Unreviewed

CVE-2021-25037 was published Jan 18, 2022

The Rearrange Woocommerce Products WordPress plugin before 3.0.8 does not have proper access... Moderate Unreviewed

CVE-2021-24928 was published Feb 8, 2022

PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which... Moderate Unreviewed

CVE-2021-42633 was published Feb 8, 2022

The Futurio Extra WordPress plugin before 1.6.3 is affected by a SQL Injection vulnerability that... Moderate Unreviewed

CVE-2021-25109 was published Feb 15, 2022

The Fancy Product Designer WordPress plugin is vulnerable to SQL Injection due to insufficient... Moderate Unreviewed

CVE-2021-4134 was published Feb 17, 2022

SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5. Moderate Unreviewed

CVE-2022-0754 was published Mar 8, 2022

Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries... Moderate Unreviewed

CVE-2022-25223 was published Mar 24, 2022

A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10... Moderate Unreviewed

CVE-2022-0842 was published Mar 24, 2022

CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint ... Moderate Unreviewed

CVE-2021-43701 was published Mar 30, 2022

An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort-by parameter of the search... Moderate Unreviewed

CVE-2022-24956 was published Mar 30, 2022

An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey... Moderate Unreviewed

CVE-2021-40645 was published Mar 31, 2022

An SQL Injection vulnerability exists in oasys oa_system as of 9/7/2021 in resources/mappers... Moderate Unreviewed

CVE-2021-40644 was published Mar 31, 2022

Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability... Moderate Unreviewed

CVE-2022-24231 was published Apr 6, 2022

Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities... Moderate Unreviewed

CVE-2022-27991 was published Apr 9, 2022

zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php... Moderate Unreviewed

CVE-2022-27127 was published Apr 11, 2022

Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 5.6 and 6.5 allow remote... Moderate Unreviewed

CVE-2003-1340 was published Apr 29, 2022

SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute... Moderate Unreviewed

CVE-2003-1520 was published Apr 29, 2022

SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS... Moderate Unreviewed

CVE-2004-1339 was published Apr 29, 2022

SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier,... Moderate Unreviewed

CVE-2004-2751 was published Apr 29, 2022

SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify... Moderate Unreviewed

CVE-2005-3046 was published May 1, 2022

SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when... Moderate Unreviewed

CVE-2005-3543 was published May 1, 2022

SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows... Moderate Unreviewed

CVE-2005-3996 was published May 1, 2022

Previous 1 2 3 4 5 … 96 97 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

2,422 advisories