GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,824

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,529 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

WUZHI CMS 4.1.0 has SQL Injection via an api/sms_check.php?param= URI. Critical Unreviewed

CVE-2018-11528 was published May 14, 2022

Multiple SQL injection vulnerabilities in Centreon 3.4.6 including Centreon Web 2.8.23 allow... Critical Unreviewed

CVE-2018-11589 was published May 14, 2022

An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can... High Unreviewed

CVE-2016-6619 was published May 14, 2022

SQL injection vulnerability in IBM InfoSphere Data Replication Dashboard 9.7 and 10.1 allows... Critical Unreviewed

CVE-2013-3000 was published May 14, 2022

Zoho ManageEngine ADAudit Plus before 5.0.0 build 5100 allows blind SQL Injection. Critical Unreviewed

CVE-2018-10466 was published May 14, 2022

In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, Using a... Critical Unreviewed

CVE-2018-1290 was published May 14, 2022

Apache Fineract 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating exposes different... High Unreviewed

CVE-2018-1291 was published May 14, 2022

An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the... Critical Unreviewed

CVE-2017-18290 was published May 14, 2022

joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution... Critical Unreviewed

CVE-2018-12039 was published May 14, 2022

The "Firebase Cloud Messaging (FCM) + Advance Admin Panel" component supporting Firebase Push... Critical Unreviewed

CVE-2018-13850 was published May 14, 2022

SQL injection vulnerability in index.php in Webmatic 3.1.1 allows remote attackers to execute... Moderate Unreviewed

CVE-2012-3350 was published May 14, 2022

A vulnerability in the conferencing component of Mitel MiVoice Connect, versions R1707-PREM SP1 ... Moderate Unreviewed

CVE-2018-9102 was published May 14, 2022

manager/admin_ajax.php in joyplus-cms 1.6.0 has SQL Injection, as demonstrated by crafted POST... Critical Unreviewed

CVE-2018-14501 was published May 14, 2022

SQL injection vulnerability in all versions prior to V4.01.01 of the ZTE ZXCDN-SNS product allows... High Unreviewed

CVE-2017-10936 was published May 14, 2022

Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage... Critical Unreviewed

CVE-2017-16849 was published May 14, 2022

Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the ... Critical Unreviewed

CVE-2017-16847 was published May 14, 2022

CliqueMania loja virtual 14 has SQL Injection via the patch/remote.php id parameter in a... Critical Unreviewed

CVE-2018-10283 was published May 14, 2022

Adaltech G-Ticket v70 EME104 has SQL Injection via the mobile-loja/mensagem.asp eve_cod parameter. Critical Unreviewed

CVE-2018-10284 was published May 14, 2022

A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/menuaccess.php... High Unreviewed

CVE-2018-10738 was published May 14, 2022

Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains a blind SQL injection... High Unreviewed

CVE-2018-1280 was published May 14, 2022

NEWMARK (aka New Mark) NMCMS 2.1 allows SQL Injection via the sect_id parameter to the /catalog URI. Critical Unreviewed

CVE-2018-12630 was published May 14, 2022

AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the Search parameter.... High Unreviewed

CVE-2022-45329 was published Nov 29, 2022

A SQL injection information disclosure vulnerability in Trend Micro Email Encryption Gateway 5.5... Moderate Unreviewed

CVE-2018-10353 was published May 14, 2022

interface\super\edit_list.php in OpenEMR before v5_0_1_1 allows remote authenticated users to... High Unreviewed

CVE-2018-9250 was published May 14, 2022

A SQL injection remote code execution vulnerability in Trend Micro Email Encryption Gateway 5.5... High Unreviewed

CVE-2018-10356 was published May 14, 2022

Previous 1…389…400 Next

Previous 1 2 … 387 388 389 390 391 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,529 advisories