Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,240 advisories

Loading
Medical Store Management System v1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-25394 was published Mar 4, 2022
Air Cargo Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-26169 was published Mar 4, 2022
Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-25399 was published Mar 4, 2022
Cosmetics and Beauty Product Online Store v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-25396 was published Mar 4, 2022
Simple Mobile Comparison Website v1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-26170 was published Mar 4, 2022
Bank Management System v1.o was discovered to contain a SQL injection vulnerability via the email... Critical Unreviewed
CVE-2022-26171 was published Mar 4, 2022
Auto Spare Parts Management v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-25398 was published Mar 4, 2022
MCMS v5.2.4 was discovered to contain a SQL injection vulnerability via search.do in the file ... Critical Unreviewed
CVE-2022-25125 was published Mar 4, 2022
SQL injection in net.mingsoft:ms-mcms Critical
CVE-2022-23898 was published for net.mingsoft:ms-mcms (Maven) Mar 4, 2022
SQL injection in net.mingsoft:ms-mcms Critical
CVE-2022-23899 was published for net.mingsoft:ms-mcms (Maven) Mar 4, 2022
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-25029 was published Mar 2, 2022
The TI WooCommerce Wishlist WordPress plugin before 1.40.1, TI WooCommerce Wishlist Pro WordPress... Critical Unreviewed
CVE-2022-0412 was published Mar 1, 2022
Car Driving School Management System v1.0 is affected by SQL injection in the login page. An... Critical Unreviewed
CVE-2022-24571 was published Mar 1, 2022
Home Owners Collection Management System v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-25096 was published Feb 27, 2022
SQL injection in francoisjacquet/rosariosis Critical
CVE-2021-44567 was published for francoisjacquet/rosariosis (Composer) Feb 25, 2022
Multiple SQL Injection vulnerabilities exist in bloofoxCMS 0.5.2.1 - 0.5.1 via the (1) URLs, (2)... Critical Unreviewed
CVE-2021-44610 was published Feb 25, 2022
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in delete_query.php via... Critical Unreviewed
CVE-2022-25406 was published Feb 25, 2022
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in change_box.php via... Critical Unreviewed
CVE-2022-25405 was published Feb 25, 2022
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in delete.php via the... Critical Unreviewed
CVE-2022-25404 was published Feb 25, 2022
HMS v1.0 was discovered to contain a SQL injection vulnerability via the component admin.php. Critical Unreviewed
CVE-2022-25403 was published Feb 25, 2022
Cybonet - PineApp Mail Relay Unauthenticated Sql Injection. Attacker can send a request to: ... Critical Unreviewed
CVE-2022-22794 was published Feb 25, 2022
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-25003 was published Feb 25, 2022
Hospital Patient Record Management System v1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-25004 was published Feb 25, 2022
ZEROF Web Server 2.0 allows /HandleEvent SQL Injection. Critical Unreviewed
CVE-2022-25322 was published Feb 19, 2022
Online Shopping Portal v3.1 was discovered to contain multiple time-based SQL injection... Critical Unreviewed
CVE-2021-46110 was published Feb 19, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database