Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,241 advisories

Loading
FS Grubhub Clone 1.0 has SQL Injection via the /food keywords parameter. Critical Unreviewed
CVE-2017-17582 was published May 13, 2022
FS Crowdfunding Script 1.0 has SQL Injection via the latest_news_details.php id parameter. Critical Unreviewed
CVE-2017-17578 was published May 13, 2022
FS Linkedin Clone 1.0 has SQL Injection via the group.php grid parameter, profile.php fid... Critical Unreviewed
CVE-2017-17580 was published May 13, 2022
FS Gigs Script 1.0 has SQL Injection via the browse-category.php cat parameter, browse-scategory... Critical Unreviewed
CVE-2017-17576 was published May 13, 2022
FS Quibids Clone 1.0 has SQL Injection via the itechd.php productid parameter. Critical Unreviewed
CVE-2017-17581 was published May 13, 2022
FS Trademe Clone 1.0 has SQL Injection via the search_item.php search parameter or the... Critical Unreviewed
CVE-2017-17577 was published May 13, 2022
FS Groupon Clone 1.0 has SQL Injection via the item_details.php id parameter or the... Critical Unreviewed
CVE-2017-17575 was published May 13, 2022
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/. Critical Unreviewed
CVE-2017-17643 was published May 13, 2022
FS Olx Clone 1.0 has SQL Injection via the subpage.php scat parameter or the message.php pid... Critical Unreviewed
CVE-2017-17586 was published May 13, 2022
FS Freelancer Clone 1.0 has SQL Injection via the profile.php u parameter. Critical Unreviewed
CVE-2017-17579 was published May 13, 2022
FS Monster Clone 1.0 has SQL Injection via the Employer_Details.php id parameter. Critical Unreviewed
CVE-2017-17585 was published May 13, 2022
FS Indiamart Clone 1.0 has SQL Injection via the catcompany.php token parameter, buyleads-details... Critical Unreviewed
CVE-2017-17587 was published May 13, 2022
FS Thumbtack Clone 1.0 has SQL Injection via the browse-category.php cat parameter or the browse... Critical Unreviewed
CVE-2017-17589 was published May 13, 2022
FS IMDB Clone 1.0 has SQL Injection via the movie.php f parameter, tvshow.php s parameter, or... Critical Unreviewed
CVE-2017-17588 was published May 13, 2022
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php... Critical Unreviewed
CVE-2017-17110 was published May 13, 2022
An issue was discovered in CSS-TRICKS Chat2 through 2015-05-05. The userid parameter in jumpin... Critical Unreviewed
CVE-2019-7316 was published May 13, 2022
SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view... Critical Unreviewed
CVE-2018-6373 was published May 13, 2022
Dolibarr SQL Injection vulnerability Critical
CVE-2018-9019 was published for dolibarr/dolibarr (Composer) May 13, 2022
SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search,... Critical Unreviewed
CVE-2018-7318 was published May 13, 2022
SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress before 4.7... Critical Unreviewed
CVE-2017-5611 was published May 13, 2022
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter... Critical Unreviewed
CVE-2017-14401 was published May 13, 2022
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter... Critical Unreviewed
CVE-2017-14402 was published May 13, 2022
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the term parameter to... Critical Unreviewed
CVE-2017-14403 was published May 13, 2022
SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) 5.1-0 via the user_id cookie... Critical Unreviewed
CVE-2017-14247 was published May 13, 2022
SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) 5.1-0 via the group_id... Critical Unreviewed
CVE-2017-14252 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database