Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,778
Erlang
35
GitHub Actions
29
Go
2,332
Maven
5,000+
npm
3,966
NuGet
713
pip
3,759
Pub
12
RubyGems
921
Rust
975
Swift
38
Unreviewed advisories
All unreviewed
5,000+

14,510 advisories

Loading
SQL injection vulnerability in Sefrengo before 1.6.5 beta2. Critical Unreviewed
CVE-2015-5052 was published May 17, 2022
SQL injection vulnerability in Pragyan CMS 3.0. Critical Unreviewed
CVE-2015-4627 was published May 17, 2022
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute... High Unreviewed
CVE-2015-7297 was published May 17, 2022
SQL injection vulnerability in the getListQuery function in administrator/components... High Unreviewed
CVE-2015-7857 was published May 17, 2022
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute... High Unreviewed
CVE-2015-7858 was published May 17, 2022
Multiple SQL injection vulnerabilities in Web Reference Database (aka refbase) through 0.9.6... High Unreviewed
CVE-2015-6009 was published May 17, 2022
Dolibarr SQL injection vulnerability in admin/menus/edit.php Critical
CVE-2017-14238 was published for dolibarr/dolibarr (Composer) May 17, 2022
Dolibarr SQL injection vulnerability in don/list.php Critical
CVE-2017-14242 was published for dolibarr/dolibarr (Composer) May 17, 2022
Multiple SQL injection vulnerabilities in AlegroCart 1.2.8 allow remote administrators to execute... High Unreviewed
CVE-2015-9226 was published May 17, 2022
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and event_form.php code do... Critical Unreviewed
CVE-2017-1002019 was published May 17, 2022
SQL injection vulnerability in the WatuPRO plugin before 5.5.3.7 for WordPress allows remote... Critical Unreviewed
CVE-2017-9834 was published May 17, 2022
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not... Critical Unreviewed
CVE-2017-1002018 was published May 17, 2022
Vulnerability in wordpress plugin surveys v1.01.8, The code in questions.php does not sanitize... Critical Unreviewed
CVE-2017-1002022 was published May 17, 2022
Vulnerability in wordpress plugin surveys v1.01.8, The code in individual_responses.php does not... Critical Unreviewed
CVE-2017-1002021 was published May 17, 2022
The set_magic_quotes_runtime function in PHP 5.3.2 and 5.3.3, when the MySQLi extension is used,... Moderate Unreviewed
CVE-2010-4700 was published May 17, 2022
SQL injection vulnerability in reports.php in NexusPHP 1.5 allows remote attackers to execute... Critical Unreviewed
CVE-2017-12776 was published May 17, 2022
EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could... Critical Unreviewed
CVE-2017-8015 was published May 17, 2022
Vulnerability in wordpress plugin surveys v1.01.8, The code in survey_form.php does not sanitize... Critical Unreviewed
CVE-2017-1002020 was published May 17, 2022
Vulnerability in wordpress plugin rk-responsive-contact-form v1.0, The variable $delid isn't... Critical Unreviewed
CVE-2017-1002027 was published May 17, 2022
Vulnerability in wordpress plugin wordpress-gallery-transformation v1.0, SQL injection is in .... Critical Unreviewed
CVE-2017-1002028 was published May 17, 2022
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via... Critical Unreviewed
CVE-2017-1002013 was published May 17, 2022
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in... Critical Unreviewed
CVE-2017-1002014 was published May 17, 2022
Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in... Critical Unreviewed
CVE-2017-1002015 was published May 17, 2022
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager ... Moderate Unreviewed
CVE-2015-1491 was published May 17, 2022
NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an... Critical Unreviewed
CVE-2017-14512 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database