GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,494

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,526 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A SQL injection vulnerability in I-Tech Trainsmart r1044 exists via a evaluation/assign... High Unreviewed

CVE-2021-36520 was published Apr 16, 2023

The WC Fields Factory WordPress plugin through 4.1.5 does not properly sanitise and escape a... High Unreviewed

CVE-2023-0277 was published Apr 17, 2023

The Gallery by BestWebSoft WordPress plugin before 4.7.0 does not properly escape values used in... High Unreviewed

CVE-2023-0765 was published Apr 17, 2023

SQL injection vulnerability found in PrestaShopleurlrewrite v.1.0 and before allow a remote... Critical Unreviewed

CVE-2023-27844 was published Apr 17, 2023

DedeCMS v5.7.106 was discovered to contain a SQL injection vulnerability via the component /dede... High Unreviewed

CVE-2023-27733 was published Apr 17, 2023

Sourcecodester Judging Management System v1.0 is vulnerable to SQL Injection via /php-jms... Critical Unreviewed

CVE-2023-30076 was published Apr 20, 2023

SQL injection vulnerability found in Piwigo v.13.5.0 and before allows a remote attacker to... High Unreviewed

CVE-2023-26876 was published Apr 21, 2023

The 'Visforms Base Package for Joomla 3' extension is vulnerable to SQL Injection as... Critical Unreviewed

CVE-2023-23753 was published Apr 23, 2023

Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the... High Unreviewed

CVE-2023-29849 was published Apr 24, 2023

The Random Text WordPress plugin through 0.3.0 does not properly sanitize and escape a parameter... High Unreviewed

CVE-2023-0388 was published Apr 24, 2023

The Steveas WP Live Chat Shoutbox WordPress plugin through 1.4.2 does not sanitise and escape a... Critical Unreviewed

CVE-2023-1020 was published Apr 24, 2023

ARC (aka ARC2) through 2011-12-01 allows blind SQL Injection in getTriplePatternSQL in... Critical Unreviewed

CVE-2012-5872 was published Apr 26, 2023

SQL injection vulnerability found in PrestaShop askforaquote v.5.4.2 and before allow a remote... Critical Unreviewed

CVE-2023-27843 was published Apr 26, 2023

Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection. High Unreviewed

CVE-2023-30112 was published Apr 26, 2023

OURPHP <= 7.2.0 is vulnerable to SQL Injection. Critical Unreviewed

CVE-2023-30211 was published Apr 26, 2023

SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands... Critical Unreviewed

CVE-2023-26781 was published Apr 28, 2023

SQL injection vulnerability in com.xnx3.wangmarket.plugin.dataDictionary.controller... Critical Unreviewed

CVE-2023-26813 was published Apr 28, 2023

The SupportCandy WordPress plugin before 3.1.5 does not validate and escape user input before... Critical Unreviewed

CVE-2023-1730 was published May 2, 2023

A SQL injection issue in Logbuch in evasys before 8.2 Build 2286 and 9.x before 9.0 Build 2401... High Unreviewed

CVE-2023-31433 was published May 2, 2023

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2023-30204 was published May 3, 2023

SQL injection vulnerability inSpryker Commerce OS 0.9 that allows for access to sensitive data... High Unreviewed

CVE-2023-27568 was published May 4, 2023

Judging Management System v1.0 by oretnom23 was discovered to vulnerable to SQL injection via ... Critical Unreviewed

CVE-2023-30077 was published May 4, 2023

Due to improper input validation in the Alerts controller, a SQL injection vulnerability in... High Unreviewed

CVE-2022-4259 was published May 4, 2023

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2023-30203 was published May 4, 2023

NS-ASG v6.3 was discovered to contain a SQL injection vulnerability via the component /admin... Critical Unreviewed

CVE-2023-30242 was published May 5, 2023

Previous 1…380…400 Next

Previous 1 2 … 378 379 380 381 382 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,526 advisories