GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
Filter advisories
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
101
GitHub Actions
54
Go
4,282
Maven
5,000+
npm
5,000+
NuGet
1,029
pip
5,000+
Pub
13
RubyGems
1,105
Rust
1,490
Swift
61
Unreviewed advisories
All unreviewed
5,000+
17,529 advisories
Filter by severity
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id...
High
Unreviewed
CVE-2022-32397
was published
Jun 25, 2022
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id...
High
Unreviewed
CVE-2022-32399
was published
Jun 25, 2022
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id...
High
Unreviewed
CVE-2022-32391
was published
Jun 25, 2022
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id...
High
Unreviewed
CVE-2022-32395
was published
Jun 25, 2022
IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of...
Moderate
Unreviewed
CVE-2022-22389
was published
Jun 25, 2022
Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerability via the attrVal...
High
Unreviewed
CVE-2022-33114
was published
Jun 24, 2022
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the key parameter at ...
High
Unreviewed
CVE-2022-33093
was published
Jun 24, 2022
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter...
High
Unreviewed
CVE-2022-33096
was published
Jun 24, 2022
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter...
High
Unreviewed
CVE-2022-33097
was published
Jun 24, 2022
LaiKetui v3.5.0 has SQL injection in the background through the menu management function, and...
High
Unreviewed
CVE-2021-40956
was published
Jun 24, 2022
** UNSUPPORTED WHEN ASSIGNED ** Docebo Community Edition v4.0.5 and below was discovered to...
Critical
Unreviewed
CVE-2022-31361
was published
Jun 24, 2022
IdeaTMS 2022 is vulnerable to SQL Injection via the PATH_INFO
Critical
Unreviewed
CVE-2022-31787
was published
Jun 24, 2022
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter...
High
Unreviewed
CVE-2022-33094
was published
Jun 24, 2022
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter...
High
Unreviewed
CVE-2022-33092
was published
Jun 24, 2022
74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter...
High
Unreviewed
CVE-2022-33095
was published
Jun 24, 2022
SQL injection exists in LaiKetui v3.5.0 the background administrator list.
High
Unreviewed
CVE-2021-40955
was published
Jun 24, 2022
Improper quoting of columns when using setOrderBy() or setGroupBy() on listing classes in Pimcore
High
CVE-2022-31092
was published
for
pimcore/pimcore
(Composer)
Jun 22, 2022
A vulnerability was found in Hindu Matrimonial Script. It has been declared as critical. Affected...
Critical
Unreviewed
CVE-2017-20067
was published
Jun 22, 2022
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2022-33049
was published
Jun 22, 2022
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2022-33048
was published
Jun 22, 2022
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2022-33056
was published
Jun 22, 2022
Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability...
High
Unreviewed
CVE-2022-33055
was published
Jun 22, 2022
ASUS Control Center is vulnerable to SQL injection. An authenticated remote attacker with general...
High
Unreviewed
CVE-2022-26669
was published
Jun 21, 2022
The Better Find and Replace WordPress plugin before 1.3.6 does not properly sanitise, validate...
High
Unreviewed
CVE-2022-1472
was published
Jun 21, 2022
The Events Made Easy WordPress plugin before 2.2.81 does not properly sanitise and escape a...
Critical
Unreviewed
CVE-2022-1905
was published
Jun 21, 2022
ProTip!
Advisories are also available from the
GraphQL API