Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

301,427 advisories

Loading
Exposure of Sensitive Information to an Unauthorized Actor in semantic-release Moderate
CVE-2022-31051 was published for semantic-release (npm) Jun 9, 2022
dmosen
Credited to dmosen
Online Car Wash Booking System v1.0 by oretnom23 has SQL injection via /ocwbs/admin/services... Critical Unreviewed
CVE-2022-31351 was published Jun 3, 2022
Simple Bus Ticket Booking System 1.0 is vulnerable to SQL Injection via /SimpleBusTicket/index.php. Critical Unreviewed
CVE-2022-30817 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php. High Unreviewed
CVE-2022-30825 was published Jun 3, 2022
Cross-origin resource sharing (CORS) enables browsers to perform cross domain requests in a... Critical Unreviewed
CVE-2021-27786 was published Jun 10, 2022
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/?page... Critical Unreviewed
CVE-2022-31343 was published Jun 3, 2022
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/?page=user... Critical Unreviewed
CVE-2022-31345 was published Jun 3, 2022
Rescue Dispatch Management System v1.0 is vulnerable to SQL Injection via /rdms/classes/Master... Critical Unreviewed
CVE-2022-31948 was published Jun 3, 2022
A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been classified as... High Unreviewed
CVE-2017-20024 was published Jun 10, 2022
A Cross-site request forgery (CSRF) vulnerability in Cscms music portal system v4.2 allows remote... Moderate Unreviewed
CVE-2022-30898 was published Jun 10, 2022
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture... High Unreviewed
CVE-2022-30819 was published Jun 3, 2022
elitecms v1.01 is vulnerable to SQL Injection via /admin/add_sidebar.php. Critical Unreviewed
CVE-2022-30814 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php. High Unreviewed
CVE-2022-30827 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php. High Unreviewed
CVE-2022-30828 was published Jun 3, 2022
Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin... High Unreviewed
CVE-2022-30835 was published Jun 3, 2022
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/classes/Master.php... Critical Unreviewed
CVE-2022-31344 was published Jun 3, 2022
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an exposed dangerous method... High Unreviewed
CVE-2022-30703 was published Jun 10, 2022
The Realty Workstation WordPress plugin through 1.0.6 does not sanitise and escape the trans_edit... Moderate Unreviewed
CVE-2022-1691 was published Jun 9, 2022
Unspecified vulnerability in the Web administration interface in Avaya Communication Manager 3.1... High Unreviewed
CVE-2008-6710 was published May 17, 2022
Online Ordering System By janobe 2.3.2 is vulneranle to SQL Injection via /ordering/index.php?q... Critical Unreviewed
CVE-2022-31327 was published Jun 3, 2022
SQL injection vulnerability in the Real Estate Property (com_properties) component 3.1.22-03 for... High Unreviewed
CVE-2010-1874 was published May 17, 2022
Directory traversal vulnerability in joomlaflickr.php in the Joomla Flickr (com_joomlaflickr)... High Unreviewed
CVE-2010-1980 was published May 17, 2022
Directory traversal vulnerability in the Affiliate Datafeeds (com_datafeeds) component build 880... Moderate Unreviewed
CVE-2010-1979 was published May 17, 2022
Directory traversal vulnerability in the BeeHeard (com_beeheard) and BeeHeard Lite ... High Unreviewed
CVE-2010-1952 was published May 17, 2022
Directory traversal vulnerability in the Deluxe Blog Factory (com_blogfactory) component 1.1.2... High Unreviewed
CVE-2010-1955 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database