GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,237
Erlang
31
GitHub Actions
20
Go
2,000
Maven
5,000+
npm
3,711
NuGet
661
pip
3,383
Pub
11
RubyGems
885
Rust
849
Swift
36
Unreviewed advisories
All unreviewed
5,000+
108 advisories
Filter by severity
SQL Injection in LibreNMS
High
CVE-2019-12465
was published
for
librenms/librenms
(Composer)
Oct 11, 2019
SQL Injection in LibreNMS
High
CVE-2019-10671
was published
for
librenms/librenms
(Composer)
Oct 11, 2019
Query Binding Exploitation
High
CVE-2021-21263
was published
for
illuminate/database
(Composer)
Jan 19, 2021
SQL Server LIMIT / OFFSET SQL Injection in laravel/framework and illuminate/database
High
GHSA-4mg9-vhxq-vm7j
was published
for
illuminate/database
(Composer)
Apr 29, 2021
SQL Injection in librenms
High
CVE-2020-35700
was published
for
librenms/librenms
(Composer)
May 6, 2021
SQL Injection in pimcore
High
CVE-2020-7759
was published
for
pimcore/pimcore
(Composer)
May 6, 2021
SQL injection in pimcore/pimcore
High
CVE-2021-23405
was published
for
pimcore/pimcore
(Composer)
Jul 13, 2021
Unauthenticated SQL Injection in Cachet
High
CVE-2021-39165
was published
for
cachethq/cachet
(Composer)
Aug 30, 2021
Content object state fetch functions open to SQL injection
High
GHSA-jpwx-ffjq-wr4w
was published
for
ezsystems/ezpublish-legacy
(Composer)
Sep 7, 2021
SQL injection in prestashop/prestashop
High
CVE-2021-43789
was published
for
prestashop/prestashop
(Composer)
Dec 7, 2021
SQL injection in jackalope/jackalope-doctrine-dbal
High
CVE-2021-43822
was published
for
jackalope/jackalope-doctrine-dbal
(Composer)
Dec 14, 2021
pimcore is vulnerable to SQL Injection
High
CVE-2022-0258
was published
for
pimcore/pimcore
(Composer)
Jan 21, 2022
SQL Injection in dolibarr
High
CVE-2022-0224
was published
for
dolibarr/dolibarr
(Composer)
Jan 21, 2022
Possible SQL injection in tablelookupwizard Contao Extension
High
GHSA-v3mr-gp7j-pw5w
was published
for
terminal42/contao-tablelookupwizard
(Composer)
Feb 10, 2022
Moodle Blind SQL injection possible via MNet authentication
High
CVE-2021-32474
was published
for
moodle/moodle
(Composer)
Mar 12, 2022
SQL Injection in Fork CMS
High
CVE-2022-0153
was published
for
forkcms/forkcms
(Composer)
Mar 25, 2022
SQL Injection in Fork CMS
High
CVE-2022-1064
was published
for
forkcms/forkcms
(Composer)
Mar 26, 2022
SQL Injection in Yeswiki
High
CVE-2021-43091
was published
for
yeswiki/yeswiki
(Composer)
Mar 26, 2022
SQL Injection in Dolibarr
High
CVE-2021-36625
was published
for
dolibarr/dolibarr
(Composer)
Apr 1, 2022
SQL injection in ImpressCMS
High
CVE-2022-26986
was published
for
impresscms/impresscms
(Composer)
Apr 6, 2022
SQL Injection in Pimcore
High
CVE-2022-1219
was published
for
pimcore/pimcore
(Composer)
Apr 9, 2022
SQL Injection in Pimcore
High
CVE-2022-1339
was published
for
pimcore/pimcore
(Composer)
Apr 14, 2022
TYPO3 SQL injection vulnerability on the backend
High
CVE-2010-3662
was published
for
typo3/cms-backend
(Composer)
Apr 21, 2022
ProTip!
Advisories are also available from the
GraphQL API