GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,921

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,532 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL Injection exists in the JGive 2.0.9 component for Joomla! via the filter_org_ind_type or... Critical Unreviewed

CVE-2018-5970 was published May 14, 2022

SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to... Critical Unreviewed

CVE-2018-5991 was published May 14, 2022

SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter... Critical Unreviewed

CVE-2018-6368 was published May 14, 2022

SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter... Critical Unreviewed

CVE-2018-7312 was published May 14, 2022

SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter,... Critical Unreviewed

CVE-2018-7314 was published May 14, 2022

An issue was discovered in idreamsoft iCMS through 7.0.7. SQL injection exists via the pid array... Critical Unreviewed

CVE-2018-9924 was published May 14, 2022

The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL injection vulnerability in the User ID and... Critical Unreviewed

CVE-2018-9245 was published May 14, 2022

A remote sql injection vulnerability in HPE Network Automation version 9.1x, 9.2x, 10.0x, 10.1x... Critical Unreviewed

CVE-2017-5810 was published May 14, 2022

A remote sql injection authentication bypass in HPE Network Automation version 9.1x, 9.2x, 10.0x,... Critical Unreviewed

CVE-2017-5814 was published May 14, 2022

SQL Injection exists in the Pinterest Clone Social Pinboard 2.0 component for Joomla! via the... Critical Unreviewed

CVE-2018-5987 was published May 14, 2022

PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the seller-view.php usid parameter. Critical Unreviewed

CVE-2017-17959 was published May 14, 2022

PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the my_wishlist.php fid parameter. Critical Unreviewed

CVE-2017-17957 was published May 14, 2022

**DISPUTED** SQL injection vulnerability in SQLiteDatabase.java in the SQLi Api in Android allows... Critical Unreviewed

CVE-2014-4959 was published May 14, 2022

There is a SQL injection in the PHPSHE 1.6 userbank parameter. Critical Unreviewed

CVE-2018-8943 was published May 14, 2022

SQL injection vulnerability in files.php in the "files" component in ASANHAMAYESH CMS 3.4.6... Critical Unreviewed

CVE-2018-7463 was published May 14, 2022

A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to... High Unreviewed

CVE-2018-10351 was published May 14, 2022

A SQL injection remote code execution vulnerability in Trend Micro Smart Protection Server ... High Unreviewed

CVE-2018-10350 was published May 14, 2022

iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter. Critical Unreviewed

CVE-2018-11372 was published May 14, 2022

Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/quotes... High Unreviewed

CVE-2022-44296 was published Nov 30, 2022

The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum... Critical Unreviewed

CVE-2018-11515 was published May 14, 2022

iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' parameter in the User Panel. High Unreviewed

CVE-2018-11470 was published May 14, 2022

The Search Logger WordPress plugin through 0.9 does not properly sanitise and escape a parameter... High Unreviewed

CVE-2022-3131 was published Oct 17, 2022

A SQL injection vulnerability in ConnectionFactory.java in sazanrjb InventoryManagementSystem 1.0... High Unreviewed

CVE-2022-36259 was published Sep 13, 2022

Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/orders... High Unreviewed

CVE-2022-44295 was published Nov 30, 2022

A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. The aaa-idm... High Unreviewed

CVE-2022-45930 was published Nov 27, 2022

Previous 1…386…400 Next

Previous 1 2 … 384 385 386 387 388 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,532 advisories