GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,638
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,645
Maven 6,108
npm 4,271
NuGet 760
pip 4,065
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,136

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

14,962 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL Injection in framework/modules/search/controllers/searchController.php in Exponent CMS v2.4.0... High Unreviewed

CVE-2016-9282 was published May 17, 2022

SQL Injection in framework/core/subsystems/expRouter.php in Exponent CMS v2.4.0 allows remote... High Unreviewed

CVE-2016-9283 was published May 17, 2022

In framework/modules/navigation/controllers/navigationController.php in Exponent CMS v2.4.0 or... Critical Unreviewed

CVE-2016-9288 was published May 17, 2022

In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, content_id... Critical Unreviewed

CVE-2016-9481 was published May 17, 2022

SQL injection vulnerability in the AssetView for MacOS Ver.9.2.0 and earlier versions allows... Moderate Unreviewed

CVE-2017-2241 was published May 17, 2022

An issue was discovered in Tilde CMS 1.0.1. Due to missing escaping of the backtick character, a... Critical Unreviewed

CVE-2017-11324 was published May 17, 2022

A vulnerability in the web framework code of Cisco Identity Services Engine (ISE) could allow an... High Unreviewed

CVE-2016-6453 was published May 17, 2022

SQL injection vulnerability in Siemens Automation License Manager (ALM) before 5.3 SP3 Update 1... Moderate Unreviewed

CVE-2016-8564 was published May 17, 2022

dapur/app/app_user/controller/status.php in Fiyo CMS 2.0.7 has SQL injection via the id parameter. Critical Unreviewed

CVE-2017-11631 was published May 17, 2022

SQL injection vulnerability in core\admin\auto-modules\forms\process.php in BigTree 4.2.18 allows... High Unreviewed

CVE-2017-11736 was published May 17, 2022

SQL injection vulnerability in Hashtopus 1.5g allows remote authenticated users to execute... High Unreviewed

CVE-2017-11678 was published May 17, 2022

The Etoile Ultimate Product Catalog plugin 4.2.11 for WordPress has SQL injection with these wp... Critical Unreviewed

CVE-2017-12199 was published May 17, 2022

ATutor version 2.2.1 and earlier are vulnerable to a SQL injection in the Assignment Dropbox,... Critical Unreviewed

CVE-2017-1000004 was published May 17, 2022

SQL injection exists in front/devicesoundcard.php in GLPI before 9.1.5 via the start parameter. Critical Unreviewed

CVE-2017-11184 was published May 17, 2022

SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing... Critical Unreviewed

CVE-2017-11386 was published May 17, 2022

SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing... Critical Unreviewed

CVE-2017-11385 was published May 17, 2022

SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when... High Unreviewed

CVE-2017-11388 was published May 17, 2022

SQL injection vulnerability in Node Vote 5.x before 5.x-1.1 and 6.x before 6.x-1.0, a module for... Moderate Unreviewed

CVE-2008-4633 was published May 17, 2022

SQL injection vulnerability in index.php in sweetCMS 1.5.2 allows remote attackers to execute... High Unreviewed

CVE-2008-4647 was published May 17, 2022

Multiple SQL injection vulnerabilities in Jetbox CMS 2.1 allow remote authenticated users to... Moderate Unreviewed

CVE-2008-4651 was published May 17, 2022

SQL injection vulnerability in the M1 Intern (m1_intern) 1.0.0 extension for TYPO3 allows remote... High Unreviewed

CVE-2008-4660 was published May 17, 2022

SQL injection vulnerability in admin.php in Libera CMS 1.12, when magic_quotes_gpc is disabled,... Moderate Unreviewed

CVE-2008-4701 was published May 17, 2022

SQL injection vulnerability in product_detail.php in DXShopCart 4.30mc allows remote attackers to... High Unreviewed

CVE-2008-4744 was published May 17, 2022

Multiple SQL injection vulnerabilities in Uniwin eCart Professional 2.0.17 allow remote attackers... High Unreviewed

CVE-2008-4746 was published May 17, 2022

SQL injection vulnerability in index.php in QuidaScript FAQ Management Script allows remote... High Unreviewed

CVE-2008-4743 was published May 17, 2022

Previous 1…393…400 Next

Previous 1 2 … 391 392 393 394 395 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

14,962 advisories