GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,819

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,529 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A SQL Injection vulnerability exists in the Zoho ManageEngine Applications Manager 13 before... Critical Unreviewed

CVE-2018-15168 was published May 14, 2022

OCS Inventory NG ocsreports 2.4 and ocsreports 2.3.1 version 2.4 and 2.3.1 contains a SQL... Moderate Unreviewed

CVE-2018-1000558 was published May 14, 2022

SQL injection vulnerability in ConnX ESP HR Management 4.4.0 allows remote attackers to execute... Critical Unreviewed

CVE-2015-4043 was published May 14, 2022

Etere EtereWeb before 28.1.20 has a pre-authentication blind SQL injection in the POST parameters... Critical Unreviewed

CVE-2018-10997 was published May 14, 2022

In the Divido plugin for OpenCart, there is SQL injection. Attackers can use SQL injection to get... High Unreviewed

CVE-2018-11231 was published May 14, 2022

iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter. Critical Unreviewed

CVE-2018-11373 was published May 14, 2022

The vulnerability exists within processing of nfcserver.php in Schneider Electric U.motion... High Unreviewed

CVE-2018-7773 was published May 14, 2022

A SQL Injection issue was observed in the parameter "q" in jobcard-ongoing.php in EasyService... Critical Unreviewed

CVE-2018-11444 was published May 14, 2022

SQL injection vulnerability in the management interface in ePortal Manager allows remote... High Unreviewed

CVE-2018-8802 was published May 14, 2022

An issue wan discovered in admin\controllers\database.php in HongCMS 3.0.0. There is a SQL... High Unreviewed

CVE-2018-12912 was published May 14, 2022

/user/del.php in zzcms 8.3 allows SQL injection via the tablename parameter after leveraging use... Critical Unreviewed

CVE-2018-13116 was published May 14, 2022

The vulnerability exists within processing of track_getdata.php in Schneider Electric U.motion... High Unreviewed

CVE-2018-7766 was published May 14, 2022

Multiple SQL injection vulnerabilities in Blogs Manager 1.101 and earlier allow remote attackers... High Unreviewed

CVE-2011-5110 was published May 14, 2022

Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the ... Critical Unreviewed

CVE-2017-16850 was published May 14, 2022

Multiple SQL injection vulnerabilities in the Leads module in SugarCRM 6.1 before 6.1.7, 6.2... High Unreviewed

CVE-2011-4833 was published May 14, 2022

Multiple SQL injection vulnerabilities in Freelancer calendar 1.01 and earlier allow remote... High Unreviewed

CVE-2011-5109 was published May 14, 2022

The vulnerability exists within processing of applets which are exposed on the web service in... High Unreviewed

CVE-2018-7772 was published May 14, 2022

SQL injection vulnerability in the password reset page in Open Web Analytics (OWA) before 1.5.5... High Unreviewed

CVE-2014-1206 was published May 14, 2022

An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exist in ladder/stats.php via the GET... Critical Unreviewed

CVE-2017-18289 was published May 14, 2022

An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the... Critical Unreviewed

CVE-2017-18288 was published May 14, 2022

WUZHI CMS 4.1.0 has a SQL Injection in api/uc.php via the 'code' parameter, because 'UC_KEY' is... Critical Unreviewed

CVE-2018-11722 was published May 14, 2022

SQL injection vulnerability in Resources/System/Templates/Data.aspx in Procentia IntelliPen... Moderate Unreviewed

CVE-2014-2043 was published May 14, 2022

SQL injection vulnerability in /send-to in Sendy 1.1.9.1 allows remote attackers to execute... High Unreviewed

CVE-2014-100011 was published May 14, 2022

spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do... Critical Unreviewed

CVE-2018-12498 was published May 14, 2022

The constructSQL function in inc/search.class.php in GLPI 9.2.x through 9.3.0 allows SQL... High Unreviewed

CVE-2018-13049 was published May 14, 2022

Previous 1…390…400 Next

Previous 1 2 … 388 389 390 391 392 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,529 advisories