GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
15,529 advisories
Filter by severity
Jara 1.6 has a SQL injection vulnerability.
Critical
Unreviewed
CVE-2011-4094
was published
Apr 22, 2022
SQL injection vulnerability in the Yet another TYPO3 search engine (YATSE) extension before 0.3.2...
High
Unreviewed
CVE-2010-1004
was published
Apr 23, 2022
SQL injection vulnerability in the Brainstorming extension 0.1.8 and earlier for TYPO3 allows...
High
Unreviewed
CVE-2010-1006
was published
Apr 23, 2022
The sharebar plugin before 1.2.2 for WordPress has SQL injection.
Critical
Unreviewed
CVE-2012-6719
was published
Apr 23, 2022
minidlna has SQL Injection that may allow retrieval of arbitrary files
Critical
Unreviewed
CVE-2013-2738
was published
May 5, 2022
The duplicate-post plugin before 2.6 for WordPress has SQL injection.
Critical
Unreviewed
CVE-2014-10379
was published
May 17, 2022
The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has SQL injection.
Critical
Unreviewed
CVE-2014-10387
was published
May 17, 2022
SQL injection vulnerability in DBD::PgPP 0.05 and earlier
Critical
Unreviewed
CVE-2014-7257
was published
May 17, 2022
Multiple SQL injection vulnerabilities in ZeusCart 4.x.
High
Unreviewed
CVE-2014-3868
was published
May 17, 2022
app/controllers/frontend/PostController.php in ROCBOSS V2.2.1 has SQL injection via the Post...
Critical
Unreviewed
CVE-2019-11362
was published
May 24, 2022
An issue was discovered in Zoho ManageEngine Applications Manager 11.0 through 14.0. An...
Critical
Unreviewed
CVE-2019-11448
was published
May 24, 2022
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection.
Critical
Unreviewed
CVE-2019-11450
was published
May 24, 2022
whatsns 4.0 allows index.php?inform/add.html qid SQL injection.
High
Unreviewed
CVE-2019-11451
was published
May 24, 2022
whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection.
High
Unreviewed
CVE-2019-11452
was published
May 24, 2022
SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated...
Critical
Unreviewed
CVE-2018-18285
was published
May 24, 2022
SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated...
Critical
Unreviewed
CVE-2018-18286
was published
May 24, 2022
An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'],...
High
Unreviewed
CVE-2019-11567
was published
May 24, 2022
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input...
High
Unreviewed
CVE-2018-14874
was published
May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/views/ajax/contactView.php. A...
Moderate
Unreviewed
CVE-2019-11613
was published
May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/views/ajax/commentView.php. A...
High
Unreviewed
CVE-2019-11614
was published
May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user...
Moderate
Unreviewed
CVE-2019-11622
was published
May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user...
Moderate
Unreviewed
CVE-2019-11619
was published
May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user...
Moderate
Unreviewed
CVE-2019-11621
was published
May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user...
Moderate
Unreviewed
CVE-2019-11623
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API