GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,262
NuGet
760
pip
4,058
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+
15,536 advisories
Filter by severity
An SQL Injection vulnerability exists in Dreamer CMS 4.0.0 via the tableName parameter.
Critical
Unreviewed
CVE-2021-43084
was published
Mar 25, 2022
SQL Injection in Fork CMS
High
CVE-2022-0153
was published
for
forkcms/forkcms
(Composer)
Mar 25, 2022
An issue was discovered in ApiManager 1.1. there is sql injection vulnerability that can use in ...
Critical
Unreviewed
CVE-2021-43700
was published
Mar 25, 2022
SQL Injection in Fork CMS
High
CVE-2022-1064
was published
for
forkcms/forkcms
(Composer)
Mar 26, 2022
SQL Injection in Yeswiki
High
CVE-2021-43091
was published
for
yeswiki/yeswiki
(Composer)
Mar 26, 2022
TuziCMS v2.0.6 was discovered to contain a SQL injection vulnerability via the component App...
Critical
Unreviewed
CVE-2022-26301
was published
Mar 26, 2022
SQLinjection in falcon-plus
Critical
CVE-2022-26245
was published
for
github.com/open-falcon/falcon-plus
(Go)
Mar 28, 2022
The Limit Login Attempts (Spam Protection) WordPress plugin before 5.1 does not sanitise and...
Critical
Unreviewed
CVE-2022-0787
was published
Mar 29, 2022
The SpeakOut! Email Petitions WordPress plugin before 2.14.15.1 does not sanitise and escape the...
Critical
Unreviewed
CVE-2022-0846
was published
Mar 29, 2022
The Title Experiments Free WordPress plugin before 9.0.1 does not sanitise and escape the id...
Critical
Unreviewed
CVE-2022-0784
was published
Mar 29, 2022
The Popup Builder WordPress plugin before 4.1.1 does not sanitise and escape the sgpb...
Critical
Unreviewed
CVE-2022-0479
was published
Mar 29, 2022
The Sync WooCommerce Product feed to Google Shopping WordPress plugin through 1.2.4 uses the ...
High
Unreviewed
CVE-2021-25068
was published
Mar 29, 2022
The Block Bad Bots WordPress plugin before 6.88 does not properly sanitise and escape the User...
Critical
Unreviewed
CVE-2021-25070
was published
Mar 29, 2022
The Wow Countdowns WordPress plugin through 3.1.2 does not sanitize user input into the 'did'...
High
Unreviewed
CVE-2021-25064
was published
Mar 29, 2022
TuziCMS 2.0.6 is affected by SQL injection in \App\Manage\Controller\BannerController.class.php.
Critical
Unreviewed
CVE-2022-23882
was published
Mar 29, 2022
A SQL Injection vulnerability exits in the Ramo plugin for GLPI 9.4.6 via the idu parameter in...
Critical
Unreviewed
CVE-2021-44617
was published
Mar 29, 2022
Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter...
Critical
Unreviewed
CVE-2022-26268
was published
Mar 29, 2022
SQL Injection in ImpressCMS
Critical
CVE-2021-26599
was published
for
impresscms/impresscms
(Composer)
Mar 29, 2022
An SQL Injection vulnerability exits in PuneethReddyHC online-shopping-system as of 11/01/2021...
High
Unreviewed
CVE-2021-43109
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26887
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-27175
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26013
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26667
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-25980
was published
Mar 30, 2022
ProTip!
Advisories are also available from the
GraphQL API