Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,529 advisories

Loading
Bank Management System v1.o was discovered to contain a SQL injection vulnerability via the email... Critical Unreviewed
CVE-2022-26171 was published Mar 4, 2022
Auto Spare Parts Management v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-25398 was published Mar 4, 2022
Medical Store Management System v1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-25394 was published Mar 4, 2022
Air Cargo Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-26169 was published Mar 4, 2022
Simple Bakery Shop Management v1.0 was discovered to contain a SQL injection vulnerability via... High Unreviewed
CVE-2022-25393 was published Mar 4, 2022
Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-25399 was published Mar 4, 2022
Cosmetics and Beauty Product Online Store v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-25396 was published Mar 4, 2022
Victor CMS v1.0 was discovered to contain a SQL injection vulnerability. Critical Unreviewed
CVE-2022-26201 was published Mar 5, 2022
When the server is configured to use trust authentication with a clientcert requirement or to use... High Unreviewed
CVE-2021-23214 was published Mar 5, 2022
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5. Moderate Unreviewed
CVE-2022-0754 was published Mar 8, 2022
The RegistrationMagic WordPress plugin before 5.0.2.2 does not sanitise and escape the rm_form_id... High Unreviewed
CVE-2022-0420 was published Mar 8, 2022
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 5.6 does not sanitise and... High Unreviewed
CVE-2022-0410 was published Mar 8, 2022
The Email Subscribers & Newsletters WordPress plugin before 5.3.2 does not correctly escape the ... High Unreviewed
CVE-2022-0439 was published Mar 8, 2022
The Page View Count WordPress plugin before 2.4.15 does not sanitise and escape the post_ids... Critical Unreviewed
CVE-2022-0434 was published Mar 8, 2022
The NotificationX WordPress plugin before 2.3.9 does not sanitise and escape the nx_id parameter... Critical Unreviewed
CVE-2022-0349 was published Mar 8, 2022
The AdRotate WordPress plugin before 5.8.22 does not sanitise and escape the adrotate_action... High Unreviewed
CVE-2022-0267 was published Mar 8, 2022
The view submission functionality in the Hotscot Contact Form WordPress plugin before 1.3 makes a... High Unreviewed
CVE-2021-24777 was published Mar 8, 2022
The test parameter of the xmlfeed in the Tradetracker-Store WordPress plugin before 4.6.60 is not... Unknown Unreviewed
CVE-2021-24778 was published Mar 8, 2022
The Conversios.io WordPress plugin before 4.6.2 does not sanitise, validate and escape the... High Unreviewed
CVE-2021-24952 was published Mar 8, 2022
A vulnerability has been identified in SINEC NMS (All versions). A privileged authenticated... High Unreviewed
CVE-2022-24281 was published Mar 9, 2022
Network Olympus version 1.8.0 allows an authenticated admin user to inject SQL queries in '/api... High Unreviewed
CVE-2022-25225 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php. Critical Unreviewed
CVE-2022-24606 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_mod.php. Critical Unreviewed
CVE-2022-24603 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php. Critical Unreviewed
CVE-2022-24605 was published Mar 11, 2022
Luocms v2.0 is affected by SQL Injection in /admin/manager/admin_mod.php. An attacker can obtain... High Unreviewed
CVE-2022-24601 was published Mar 11, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database