Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,529 advisories

Loading
SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by... Critical Unreviewed
CVE-2021-41471 was published Jan 25, 2022
SQL injection vulnerability in Sourcecodester Storage Unit Rental Management System v1 by... Critical Unreviewed
CVE-2021-40907 was published Jan 25, 2022
SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by... Critical Unreviewed
CVE-2021-40908 was published Jan 25, 2022
SQL injection vulnerability in Login.php in sourcecodester Online Learning System v2 by oretnom23... Critical Unreviewed
CVE-2021-40596 was published Jan 25, 2022
The WP User Frontend WordPress plugin before 3.5.26 does not validate and escape the status... Critical Unreviewed
CVE-2021-25076 was published Jan 25, 2022
The Asgaros Forum WordPress plugin before 1.15.15 does not validate or escape the forum_id... High Unreviewed
CVE-2021-25045 was published Jan 25, 2022
The Cookie Notification Plugin for WordPress plugin before 1.0.9 does not sanitise or escape the... High Unreviewed
CVE-2021-24858 was published Jan 25, 2022
The Advanced Custom Fields: Extended WordPress plugin before 0.8.8.7 does not validate the order... High Unreviewed
CVE-2021-24865 was published Jan 25, 2022
SQL Injection in JeecgBoot Critical
CVE-2021-46089 was published for org.jeecgframework.boot:jeecg-boot-base (Maven) Jan 26, 2022
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this... High Unreviewed
CVE-2021-45803 was published Jan 26, 2022
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the... Critical Unreviewed
CVE-2021-45802 was published Jan 26, 2022
Mingsoft MCMS SQL injection vulnerability High
CVE-2021-46385 was published for net.mingsoft:ms-mcms (Maven) Jan 27, 2022
Mingsoft MCMS SQL injection vulnerability High
CVE-2021-46383 was published for net.mingsoft:ms-mcms (Maven) Jan 27, 2022
SQL Injection in showdoc Moderate
CVE-2022-0362 was published for showdoc/showdoc (Composer) Jan 27, 2022
SQL injection in github.com/navidrome/navidrome Moderate
CVE-2022-23857 was published for github.com/navidrome/navidrome (Go) Jan 27, 2022
There is a front-end sql injection vulnerability in cszcms 1.2.9 via cszcms/controllers/Member... Critical Unreviewed
CVE-2021-46377 was published Jan 28, 2022
An SQL Injection vulnerability exists in Sourcecodester Simple Chatbot Application 1.0 via the... Critical Unreviewed
CVE-2021-46427 was published Jan 28, 2022
SQL injection in Moodle Critical
CVE-2022-0332 was published for moodle/moodle (Composer) Jan 28, 2022
H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via ... Critical Unreviewed
CVE-2021-46448 was published Jan 29, 2022
H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via ... Critical Unreviewed
CVE-2021-46444 was published Jan 29, 2022
H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via ... Critical Unreviewed
CVE-2021-46445 was published Jan 29, 2022
H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via ... Critical Unreviewed
CVE-2021-46446 was published Jan 29, 2022
SQL injection in the ID parameter of the UploadedImageDisplay.aspx endpoint of SelectSurvey.NET... Critical Unreviewed
CVE-2021-41609 was published Jan 29, 2022
A SQL injection vulnerability exists in ZFAKA<=1.43 which an attacker can use to complete SQL... Critical Unreviewed
CVE-2022-22294 was published Jan 29, 2022
Online Motorcycle (Bike) Rental System 1.0 is vulnerable to a Blind Time-Based SQL Injection... Critical Unreviewed
CVE-2021-44249 was published Jan 29, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database