Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,984
Erlang
39
GitHub Actions
38
Go
2,626
Maven
5,000+
npm
4,258
NuGet
760
pip
4,051
Pub
12
RubyGems
954
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,490 advisories

Loading
SQL injection vulnerability in SAP HANA Web-based Development Workbench allows remote attackers... High Unreviewed
CVE-2015-4159 was published May 17, 2022
SQL injection vulnerability in SAP ASE Database Platform allows remote attackers to execute... High Unreviewed
CVE-2015-4160 was published May 17, 2022
SQL injection vulnerability in the API in IBM OpenPages GRC Platform 7.0 before 7.0.0.4 IF3 and 7... Moderate Unreviewed
CVE-2015-5049 was published May 17, 2022
SQL injection vulnerability in Watchguard XCS 9.2 and 10.0 before build 150522 allows remote... High Unreviewed
CVE-2015-5452 was published May 17, 2022
Zend Framework SQL injection vector using null byte for PDO Critical
CVE-2015-7695 was published for zendframework/zendframework1 (Composer) May 17, 2022
SQL injection vulnerability in IBM Security Guardium Database Activity Monitor 8.2 before p310, 9... High Unreviewed
CVE-2016-0249 was published May 17, 2022
SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1... High Unreviewed
CVE-2016-1393 was published May 17, 2022
SQL injection vulnerability in Rockwell Automation FactoryTalk EnergyMetrix before 2.20.00 allows... Critical Unreviewed
CVE-2016-4522 was published May 17, 2022
Multiple SQL injection vulnerabilities in Misys FusionCapital Opics Plus allow remote... Moderate Unreviewed
CVE-2016-5653 was published May 17, 2022
SQL injection vulnerability in Moxa SoftCMS before 1.5 allows remote attackers to execute... Critical Unreviewed
CVE-2016-5792 was published May 17, 2022
Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and... Critical Unreviewed
CVE-2016-5843 was published May 17, 2022
SQL injection vulnerability in Cisco Firepower Management Center 4.10.3 through 5.4.0 allows... High Unreviewed
CVE-2016-6419 was published May 17, 2022
In /framework/modules/notfound/controllers/notfoundController.php of Exponent CMS 2.4.0 patch1,... Critical Unreviewed
CVE-2016-9287 was published May 17, 2022
Multiple SQL injection vulnerabilities in the update method in framework/modules/core/controllers... High Unreviewed
CVE-2016-9242 was published May 17, 2022
A Blind SQL Injection Vulnerability in Exponent CMS through 2.4.0, with the rerank array... Critical Unreviewed
CVE-2016-9272 was published May 17, 2022
Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/expPaginator.php" affecting... High Unreviewed
CVE-2016-9134 was published May 17, 2022
SQL injection vulnerability in the "Site Browser > HTML pages" screen in dotCMS before 3.3.1... High Unreviewed
CVE-2016-8908 was published May 17, 2022
SQL injection vulnerability in the "Content Types > Content Types" screen in dotCMS before 3.3.1... High Unreviewed
CVE-2016-8907 was published May 17, 2022
SQL injection vulnerability in the "Site Browser > Templates pages" screen in dotCMS before 3.3.1... High Unreviewed
CVE-2016-8903 was published May 17, 2022
SQL injection vulnerability in the categoriesServlet servlet in dotCMS before 3.3.1 allows remote... Critical Unreviewed
CVE-2016-8902 was published May 17, 2022
Exponent CMS 2.3.9 suffers from a SQL injection vulnerability in "/framework/modules/help... High Unreviewed
CVE-2016-9135 was published May 17, 2022
In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0,... High Unreviewed
CVE-2016-9184 was published May 17, 2022
SQL injection vulnerability in the JSONTags servlet in dotCMS before 3.3.1 allows remote... High Unreviewed
CVE-2016-8905 was published May 17, 2022
SQL injection vulnerability in the "Site Browser > Links pages" screen in dotCMS before 3.3.1... High Unreviewed
CVE-2016-8906 was published May 17, 2022
SQL injection vulnerability in the "Site Browser > Containers pages" screen in dotCMS before 3.3... High Unreviewed
CVE-2016-8904 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database