Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,532 advisories

Loading
An issue was discovered in YxtCMF 3.1. SQL Injection exists in ShitiController.class.php via the... Critical Unreviewed
CVE-2018-7732 was published May 14, 2022
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged... High Unreviewed
CVE-2018-7735 was published May 14, 2022
SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL... Moderate Unreviewed
CVE-2012-2962 was published May 14, 2022
An issue was discovered in ClipBucket before 4.0.0 Release 4902. SQL injection vulnerabilities... Critical Unreviewed
CVE-2018-7666 was published May 14, 2022
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login... Critical Unreviewed
CVE-2018-6859 was published May 14, 2022
School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection... High Unreviewed
CVE-2022-38269 was published Sep 9, 2022
Garage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id... High Unreviewed
CVE-2022-38606 was published Sep 13, 2022
Church Management System v1.0 was discovered to contain a SQL injection vulnerability via the id... High Unreviewed
CVE-2022-38605 was published Sep 13, 2022
A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm... High Unreviewed
CVE-2022-45931 was published Nov 27, 2022
Online Leave Management System v1.0 was discovered to contain a SQL injection vulnerability via... High Unreviewed
CVE-2022-38304 was published Sep 13, 2022
SQL injection vulnerability in the offset method in the Active Record class in CodeIgniter before... Critical Unreviewed
CVE-2015-5725 was published May 14, 2022
The Security Console in EMC RSA Authentication Manager 8.2 SP1 P6 and earlier is affected by a... Moderate Unreviewed
CVE-2017-15546 was published May 14, 2022
SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and... Critical Unreviewed
CVE-2018-7477 was published May 14, 2022
ws.php in the Facetag extension 0.0.3 for Piwigo allows SQL injection via the imageId parameter... Critical Unreviewed
CVE-2017-9426 was published May 14, 2022
A SQL injection vulnerability in SupplierDAO.java in sazanrjb InventoryManagementSystem 1.0... High Unreviewed
CVE-2022-36255 was published Sep 13, 2022
A SQL injection vulnerability in Stocks.java in sazanrjb InventoryManagementSystem 1.0 allows... High Unreviewed
CVE-2022-36256 was published Sep 13, 2022
A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 edit policy script... Critical Unreviewed
CVE-2018-6229 was published May 14, 2022
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page... High Unreviewed
CVE-2022-44294 was published Nov 30, 2022
XXXTreeNode method SQL injection remote code execution (RCE) vulnerabilities in Trend Micro... High Unreviewed
CVE-2018-3607 was published May 14, 2022
TopXXX, ViolationXXX, and IncidentXXX method SQL injection remote code execution (RCE)... High Unreviewed
CVE-2018-3605 was published May 14, 2022
SQL Injection exists in the Aist through 2.0 component for Joomla! via the id parameter in a view... Critical Unreviewed
CVE-2018-5993 was published May 14, 2022
SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with... Critical Unreviewed
CVE-2018-6585 was published May 14, 2022
SQL Injection exists in the MediaLibrary Free 4.0.12 component for Joomla! via the id parameter... Critical Unreviewed
CVE-2018-5971 was published May 14, 2022
PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the shopping-cart.php cusid... Critical Unreviewed
CVE-2017-17951 was published May 14, 2022
SQL Injection exists in the Project Log 1.5.3 component for Joomla! via the search parameter. Critical Unreviewed
CVE-2018-6024 was published May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database