Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,536 advisories

Loading
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the art parameter at ... Critical Unreviewed
CVE-2022-27126 was published Apr 11, 2022
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php... Moderate Unreviewed
CVE-2022-27127 was published Apr 11, 2022
The Podcast Importer SecondLine WordPress plugin before 1.3.8 does not sanitise and properly... High Unreviewed
CVE-2022-1023 was published Apr 12, 2022
An SQL Injection vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS... Critical Unreviewed
CVE-2021-37291 was published Apr 12, 2022
The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection WordPress... Critical Unreviewed
CVE-2022-0949 was published Apr 12, 2022
The Advanced Booking Calendar WordPress plugin before 1.7.1 does not sanitise and escape the id... High Unreviewed
CVE-2022-1006 was published Apr 12, 2022
Due to lack of protection, parameter student_id in OpenSIS Classic 8.0 /modules/eligibility... High Unreviewed
CVE-2022-27041 was published Apr 12, 2022
An issue in the component Item_subselect::init_expr_cache_tracker of MariaDB Server v10.6 and... High Unreviewed
CVE-2022-27384 was published Apr 13, 2022
An issue in the component Used_tables_and_const_cache::used_tables_and_const_cache_join of... High Unreviewed
CVE-2022-27385 was published Apr 13, 2022
MariaDB Server v10.7 and below was discovered to contain a segmentation fault via the component... High Unreviewed
CVE-2022-27386 was published Apr 13, 2022
An issue in the component my_decimal::operator= of MariaDB Server v10.6.3 and below was... High Unreviewed
CVE-2022-27380 was published Apr 13, 2022
An issue in the component Create_tmp_table::finalize of MariaDB Server v10.7 and below was... High Unreviewed
CVE-2022-27378 was published Apr 13, 2022
An issue in the component Field::set_default of MariaDB Server v10.6 and below was discovered to... High Unreviewed
CVE-2022-27381 was published Apr 13, 2022
An issue in the component Arg_comparator::compare_real_fixed of MariaDB Server v10.6.2 and below... High Unreviewed
CVE-2022-27379 was published Apr 13, 2022
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php Critical Unreviewed
CVE-2022-28035 was published Apr 13, 2022
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_uploads.php Critical Unreviewed
CVE-2022-28033 was published Apr 13, 2022
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php Critical Unreviewed
CVE-2022-28036 was published Apr 13, 2022
AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php Critical Unreviewed
CVE-2022-28034 was published Apr 13, 2022
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Members_editUser Critical Unreviewed
CVE-2022-27162 was published Apr 13, 2022
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php Critical Unreviewed
CVE-2022-28032 was published Apr 13, 2022
Csz Cms 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Members_viewUsers Critical Unreviewed
CVE-2022-27161 was published Apr 13, 2022
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Users_editUser Critical Unreviewed
CVE-2022-27163 was published Apr 13, 2022
CSZ CMS 1.2.2 is vulnerable to SQL Injection via cszcms_admin_Users_viewUsers Critical Unreviewed
CVE-2022-27164 was published Apr 13, 2022
SQL injection vulnerability in Topics Searching feature of Roothub 2.6.0 allows unauthorized... Critical Unreviewed
CVE-2022-27473 was published Apr 13, 2022
SQL injection vulnerability in Topics Counting feature of Roothub 2.6.0 allows unauthorized... Critical Unreviewed
CVE-2022-27472 was published Apr 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database