GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,620
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,640
Maven 6,106
npm 4,265
NuGet 760
pip 4,061
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,133

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,541 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection vulnerability in urunler.asp in Iltaweb Alisveris Sistemi allows remote attackers... High Unreviewed

CVE-2008-5707 was published May 14, 2022

SQL injection vulnerability in core/user.php in CS-Cart 1.3.5 and earlier allows remote attackers... High Unreviewed

CVE-2008-6394 was published May 14, 2022

SQL injection vulnerability in system/nlb_user.class.php in NewLife Blogger 3.0 and earlier, and... High Unreviewed

CVE-2008-6180 was published May 14, 2022

SQL injection vulnerability in index.php in Hivemaker Professional 1.0.2 and earlier, when... Moderate Unreviewed

CVE-2008-6427 was published May 14, 2022

SQL injection vulnerability in the mDigg (com_mdigg) component 2.2.8 for Joomla! allows remote... High Unreviewed

CVE-2008-6149 was published May 14, 2022

SQL injection vulnerability in the actionMultipleAddProduct function in includes/classes... Moderate Unreviewed

CVE-2008-6986 was published May 14, 2022

Multiple SQL injection vulnerabilities in includes/classes/shopping_cart.php in Zen Cart 1.2.0... Moderate Unreviewed

CVE-2008-6985 was published May 14, 2022

Multiple SQL injection vulnerabilities in index.php in CoronaMatrix phpAddressBook 2.0 allow... High Unreviewed

CVE-2008-7145 was published May 14, 2022

Vanilla before 2.6.1 allows SQL injection via an invitationID array to /profile/deleteInvitation,... Moderate Unreviewed

CVE-2018-16410 was published May 14, 2022

FUEL CMS 1.4.1 allows SQL Injection via the layout, published, or search_term parameter to pages... Critical Unreviewed

CVE-2018-16762 was published May 14, 2022

zzcms version 8.3 and earlier contains a SQL Injection vulnerability in zt/top.php line 5 that... Critical Unreviewed

CVE-2018-1000653 was published May 14, 2022

SQL injection vulnerability in interface/de_identification_forms/de_identification_screen2.php in... High Unreviewed

CVE-2018-15150 was published May 14, 2022

An issue is discovered in baijiacms V4. Blind SQL Injection exists via the order parameter in an... Critical Unreviewed

CVE-2018-16724 was published May 14, 2022

SQL injection vulnerability in blog.php in the Team Impact TI Blog System mod for PHP-Fusion... High Unreviewed

CVE-2008-5733 was published May 14, 2022

SQL injection vulnerability in the Jpad (com_jpad) 1.0 component for Joomla! allows remote... High Unreviewed

CVE-2008-4715 was published May 14, 2022

LibreHealthIO lh-ehr version REL-2.0.0 contains a SQL Injection vulnerability in Show Groups... High Unreviewed

CVE-2018-1000650 was published May 14, 2022

The tree list functionality in the photo gallery application in ASUSTOR ADM 3.1.0.RFQ3 has a SQL... Critical Unreviewed

CVE-2018-11511 was published May 14, 2022

A SQL injection was discovered in /coreframe/app/admin/copyfrom.php in WUZHI CMS 4.1.0 via the... Critical Unreviewed

CVE-2018-15893 was published May 14, 2022

The Gift Vouchers plugin through 2.0.1 for WordPress allows SQL Injection via the template_id... Critical Unreviewed

CVE-2018-16159 was published May 14, 2022

An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the index.php... Critical Unreviewed

CVE-2018-16354 was published May 14, 2022

phpkaiyuancms PhpOpenSourceCMS (POSCMS) V3.2.0 allows an unauthenticated user to execute... Critical Unreviewed

CVE-2018-16278 was published May 14, 2022

An issue was discovered in SeaCMS through 6.61. SQL injection exists via the tid parameter in an... Critical Unreviewed

CVE-2018-16445 was published May 14, 2022

A SQL injection was discovered in /coreframe/app/admin/pay/admin/index.php in WUZHI CMS 4.1.0 via... Critical Unreviewed

CVE-2018-15894 was published May 14, 2022

Multiple SQL injection vulnerabilities in Command School Student Management System 1.06.01 allow... High Unreviewed

CVE-2014-1636 was published May 14, 2022

BlueCMS 1.6 allows SQL Injection via the user_name parameter to uploads/user.php?act=index_login. Critical Unreviewed

CVE-2018-16432 was published May 14, 2022

Previous 1…398…400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,541 advisories