Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,969
Erlang
39
GitHub Actions
38
Go
2,624
Maven
5,000+
npm
4,257
NuGet
760
pip
4,050
Pub
12
RubyGems
953
Rust
1,052
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,484 advisories

Loading
Multiple SQL injection vulnerabilities in dex_reservations.php in the CP Reservation Calendar... High Unreviewed
CVE-2015-7235 was published May 17, 2022
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla High Unreviewed
CVE-2016-1000120 was published May 17, 2022
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension High Unreviewed
CVE-2016-1000122 was published May 17, 2022
Zotpress plugin for WordPress SQLi in zp_get_account() Critical Unreviewed
CVE-2016-1000217 was published May 17, 2022
SQL injection vulnerability in the REST API in dotCMS before 3.3.2 allows remote attackers to... Critical Unreviewed
CVE-2016-2355 was published May 17, 2022
SQL injection vulnerability in IBM QRadar SIEM 7.1 before MR2 Patch 13 and 7.2 before 7.2.7... High Unreviewed
CVE-2016-2873 was published May 17, 2022
SQL injection vulnerability in the SQL comment filtering system in the Database API in Drupal 7.x... High Unreviewed
CVE-2015-6659 was published May 17, 2022
Cisco WebEx Meeting Center does not properly restrict the content of URLs in GET requests, which... High Unreviewed
CVE-2015-4208 was published May 17, 2022
SQL injection vulnerability in Cisco Unified MeetingPlace 8.6(1.2) allows remote authenticated... Moderate Unreviewed
CVE-2015-4233 was published May 17, 2022
SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1... Moderate Unreviewed
CVE-2015-4222 was published May 17, 2022
SQL injection vulnerability in the web interface in Cisco Unity Connection 9.1(1.2) and earlier... Moderate Unreviewed
CVE-2015-6299 was published May 17, 2022
Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4... Moderate Unreviewed
CVE-2013-5003 was published May 17, 2022
Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary... High Unreviewed
CVE-2013-5640 was published May 17, 2022
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow... Moderate Unreviewed
CVE-2013-7175 was published May 17, 2022
SQL injection vulnerability in zp-core/zp-extensions/wordpress_import.php in Zenphoto before 1.4... Moderate Unreviewed
CVE-2013-7242 was published May 17, 2022
Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers to execute arbitrary... High Unreviewed
CVE-2013-7349 was published May 17, 2022
SQL injection vulnerability in includes/classes/Authenticate.class.php in PHP-Fusion 7.02.01... High Unreviewed
CVE-2013-7375 was published May 17, 2022
SQL injection vulnerability in DLGuard 4.5 allows remote attackers to execute arbitrary SQL... High Unreviewed
CVE-2015-2066 was published May 17, 2022
SQL injection vulnerability in the PHPlist Integration Module before 6.x-1.7 for Drupal allows... Moderate Unreviewed
CVE-2015-3345 was published May 17, 2022
Multiple SQL injection vulnerabilities in view_all_bug_page.php in MantisBT before 1.2.18 allow... High Unreviewed
CVE-2014-9089 was published May 17, 2022
The Big SQL component in IBM InfoSphere BigInsights 3.0 through 3.0.0.2 allows remote... Moderate Unreviewed
CVE-2015-1889 was published May 17, 2022
SQL injection vulnerability in the Business Rules Framework (CRM-BF-BRF) in SAP CRM allows... High Unreviewed
CVE-2015-3980 was published May 17, 2022
SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified... Moderate Unreviewed
CVE-2015-0699 was published May 17, 2022
Django Vulnerable to MySQL Injection High
CVE-2014-0474 was published for Django (pip) May 17, 2022
SQL injection vulnerability in the "aWeb Cart Watching System for Virtuemart" extension before 2... Critical Unreviewed
CVE-2016-10114 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database