GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,239
Erlang
31
GitHub Actions
21
Go
2,007
Maven
5,000+
npm
3,716
NuGet
662
pip
3,388
Pub
11
RubyGems
885
Rust
851
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
6,170 advisories
Filter by severity
It was found that PostgreSQL versions before 12.4, before 11.9 and before 10.14 did not properly...
High
Unreviewed
CVE-2020-14349
was published
May 24, 2022
CentOS-WebPanel.com (aka CWP) CentOS Web Panel (for CentOS 6 and 7) allows SQL Injection via the ...
High
Unreviewed
CVE-2020-10230
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2020-15620
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2020-15616
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2020-15622
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2020-15617
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2020-15619
was published
May 24, 2022
This vulnerability allows remote attackers to disclose sensitive information on affected...
High
Unreviewed
CVE-2020-15618
was published
May 24, 2022
ZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can...
High
Unreviewed
CVE-2022-47745
was published
Jan 19, 2023
Network Olympus version 1.8.0 allows an authenticated admin user to inject SQL queries in '/api...
High
Unreviewed
CVE-2022-25225
was published
Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/manager/admin_mod.php. An attacker can obtain...
High
Unreviewed
CVE-2022-24601
was published
Mar 11, 2022
Found a potential security vulnerability inside the Pandora API. Affected Pandora FMS version...
High
Unreviewed
CVE-2022-0507
was published
Mar 11, 2022
The login.jsp page of Quicklert for Digium 10.0.0 (1043) is affected by both Blind SQL Injection...
High
Unreviewed
CVE-2021-43969
was published
Mar 11, 2022
The Simple Quotation WordPress plugin through 1.3.2 does not have authorisation (and CSRF) checks...
High
Unreviewed
CVE-2022-22735
was published
Mar 15, 2022
The Event Manager and Tickets Selling for WooCommerce WordPress plugin before 3.5.8 does not...
High
Unreviewed
CVE-2022-0478
was published
Mar 15, 2022
The WP Email Users WordPress plugin through 1.7.6 does not escape the data_raw parameter in the...
High
Unreviewed
CVE-2021-24959
was published
Mar 15, 2022
HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in...
High
Unreviewed
CVE-2022-25491
was published
Mar 16, 2022
A blind SQL injection vulnerability exists in Xbtit 3.1 via the sid parameter in ajaxchat...
High
Unreviewed
CVE-2021-45821
was published
Mar 17, 2022
SQL injection vulnerability in the allCineVid component (com_allcinevid) 1.0.0 for Joomla! allows...
High
Unreviewed
CVE-2011-0511
was published
May 17, 2022
SQL injection vulnerability in mainx_a.php in E-PROMPT C BetMore Site Suite 4.0 through 4.2.0...
High
Unreviewed
CVE-2011-0516
was published
May 17, 2022
SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x...
High
Unreviewed
CVE-2011-0549
was published
May 17, 2022
SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote attackers to execute...
High
Unreviewed
CVE-2011-0646
was published
May 17, 2022
SQL injection vulnerability in include/admin/model_field.class.php in PHPCMS 2008 V2 allows...
High
Unreviewed
CVE-2011-0644
was published
May 17, 2022
Multiple SQL injection vulnerabilities in Domain Technologie Control (DTC) before 0.32.9 allow...
High
Unreviewed
CVE-2011-0434
was published
May 17, 2022
SQL injection vulnerability in data.php in PHPCMS 2008 V2 allows remote attackers to execute...
High
Unreviewed
CVE-2011-0645
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API