Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,536 advisories

Loading
SQL Injection exists in Flexible Poll 1.2 via the id parameter to mobile_preview.php or index.php. Critical Unreviewed
CVE-2018-5988 was published May 14, 2022
SQL Injection exists in the LiveCRM SaaS Cloud 1.0 component for Joomla! via an r=site/login... Critical Unreviewed
CVE-2018-5985 was published May 14, 2022
SQL Injection exists in Affiligator Affiliate Webshop Management System 2.1.0 via a search/?q=... Critical Unreviewed
CVE-2018-5977 was published May 14, 2022
SQL Injection exists in the Tumder (An Arcade Games Platform) 2.1 component for Joomla! via the... Critical Unreviewed
CVE-2018-5984 was published May 14, 2022
SQL Injection exists in Facebook Style Php Ajax Chat Zechat 1.5 via the login.php User field. Critical Unreviewed
CVE-2018-5978 was published May 14, 2022
SQL Injection exists in Professional Local Directory Script 1.0 via the sellers_subcategories.php... Critical Unreviewed
CVE-2018-5973 was published May 14, 2022
Multiple SQL injections exist in SugarCRM Community Edition 6.5.26 and below via the track... Critical Unreviewed
CVE-2018-6308 was published May 14, 2022
An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Multiple SQL... Critical Unreviewed
CVE-2018-5778 was published May 14, 2022
SQL injection vulnerability in RISE Ultimate Project Manager 1.9 allows remote attackers to... Critical Unreviewed
CVE-2017-17999 was published May 14, 2022
SQL Injection exists in TSiteBuilder 1.0 via the id parameter to /site.php, /pagelist.php, or ... Critical Unreviewed
CVE-2018-6365 was published May 14, 2022
SQL Injection exists in Classified Ads CMS Quickad 4.0 via the keywords, placeid, cat, or subcat... Critical Unreviewed
CVE-2018-5972 was published May 14, 2022
SQL Injection exists in the JEXTN Classified 1.0.0 component for Joomla! via a view=boutique&sid=... Critical Unreviewed
CVE-2018-6575 was published May 14, 2022
SQL Injection exists in Multilanguage Real Estate MLM Script through 3.0 via the /product-list... Critical Unreviewed
CVE-2018-6364 was published May 14, 2022
SQL Injection exists in the JMS Music 1.1.1 component for Joomla! via a search with the keyword,... Critical Unreviewed
CVE-2018-6581 was published May 14, 2022
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug... Critical Unreviewed
CVE-2018-6576 was published May 14, 2022
SQL Injection exists in the Visual Calendar 3.1.3 component for Joomla! via the id parameter in a... Critical Unreviewed
CVE-2018-6395 was published May 14, 2022
SQL Injection exists in the JEXTN Membership 3.1.0 component for Joomla! via the usr_plan... Critical Unreviewed
CVE-2018-6577 was published May 14, 2022
SQL Injection exists in the JEXTN Reverse Auction 3.1.0 component for Joomla! via a view=products... Critical Unreviewed
CVE-2018-6579 was published May 14, 2022
SQL Injection exists in the JE PayperVideo 3.0.0 component for Joomla! via the usr_plan parameter... Critical Unreviewed
CVE-2018-6578 was published May 14, 2022
In Joomla! before 3.8.4, the lack of type casting of a variable in a SQL statement leads to a SQL... Critical Unreviewed
CVE-2018-6376 was published May 14, 2022
SQL Injection exists in the CP Event Calendar 3.0.1 component for Joomla! via the id parameter in... Critical Unreviewed
CVE-2018-6398 was published May 14, 2022
SQL Injection exists in Vastal I-Tech Buddy Zone Facebook Clone 2.9.9 via the /chat_im... Critical Unreviewed
CVE-2018-6367 was published May 14, 2022
phpmyadmin contains SQL Injection vulnerability Critical
CVE-2020-22452 was published for phpmyadmin/phpmyadmin (Composer) Jan 26, 2023
Security Onion Solutions Squert version 1.1.1 through 1.6.7 contains a SQL Injection... Critical Unreviewed
CVE-2018-1000044 was published May 14, 2022
Multiple SQL injection vulnerabilities in Saifor CVMS HUB 1.3.1 allow an authenticated user to... High Unreviewed
CVE-2018-6792 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database