GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,588

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,527 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection vulnerability in the hotpot_delete_selected_attempts function in report.php in the... High Unreviewed

CVE-2008-6124 was published May 14, 2022

The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE... Critical Unreviewed

CVE-2018-14592 was published May 14, 2022

An issue was discovered in zzcms 8.3. SQL Injection exists in zs/search.php via a pxzs cookie. Critical Unreviewed

CVE-2018-18791 was published May 14, 2022

ServersCheck Monitoring Software before 14.3.4 allows SQL Injection by an authenticated user. High Unreviewed

CVE-2018-18550 was published May 14, 2022

SQL Injection exists in the Collection Factory 4.1.9 component for Joomla! via the filter_order... Critical Unreviewed

CVE-2018-17383 was published May 14, 2022

SQL Injection exists in the Swap Factory 2.2.1 component for Joomla! via the filter_order_Dir or... Critical Unreviewed

CVE-2018-17384 was published May 14, 2022

SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the... Critical Unreviewed

CVE-2018-17378 was published May 14, 2022

PhpTpoint hospital management system suffers from multiple SQL injection vulnerabilities via the... Critical Unreviewed

CVE-2018-18705 was published May 14, 2022

MetInfo 6.1.0 has SQL injection in doexport() in app/system/feedback/admin/feedback_admin.class... Moderate Unreviewed

CVE-2018-17129 was published May 14, 2022

SQL Injection exists in the Jobs Factory 2.0.4 component for Joomla! via the filter_letter... Critical Unreviewed

CVE-2018-17382 was published May 14, 2022

admin/check.asp in DKCMS 9.4 allows SQL Injection via an ASPSESSIONID cookie to admin/admin.asp. Critical Unreviewed

CVE-2018-18832 was published May 14, 2022

SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the... Critical Unreviewed

CVE-2018-17376 was published May 14, 2022

SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter... Critical Unreviewed

CVE-2018-17397 was published May 14, 2022

SQL Injection in login.php in Naviwebs Navigate CMS 2.8 allows remote attackers to bypass... Critical Unreviewed

CVE-2018-17552 was published May 14, 2022

SQL Injection exists in the Questions 1.4.3 component for Joomla! via the term, userid, users, or... Critical Unreviewed

CVE-2018-17377 was published May 14, 2022

youke365 v1.1.5 has SQL injection via admin/login.html, as demonstrated by username=admin&pass... Critical Unreviewed

CVE-2018-18242 was published May 14, 2022

An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php... Critical Unreviewed

CVE-2018-17428 was published May 14, 2022

SQL injection vulnerability in cacti/host.php in Cacti 0.8.8b and earlier allows remote attackers... High Unreviewed

CVE-2013-5589 was published May 14, 2022

SWA SWA.JACAD 3.1.37 Build 024 has SQL Injection via the /academico/aluno/esqueci-minha-senha/... Critical Unreviewed

CVE-2018-17575 was published May 14, 2022

A SQL injection was discovered in WUZHI CMS 4.1.0 in coreframe/app/coupon/admin/card.php via the... Critical Unreviewed

CVE-2018-17852 was published May 14, 2022

WikidForum 2.20 has SQL Injection via the rpc.php parent_post_id or num_records parameter, or the... Critical Unreviewed

CVE-2018-18075 was published May 14, 2022

CMS ISWEB 3.5.3 is vulnerable to multiple SQL injection flaws. An attacker can inject malicious... Critical Unreviewed

CVE-2018-14956 was published May 14, 2022

In REDAXO before 5.6.3, a critical SQL injection vulnerability has been discovered in the... Critical Unreviewed

CVE-2018-17831 was published May 14, 2022

PbootCMS 1.2.1 has SQL injection via the HTTP POST data to the api.php/cms/addform?fcode=1 URI. High Unreviewed

CVE-2018-18211 was published May 14, 2022

SQL injection vulnerability in phpMyFAQ before 2.8.13 allows remote authenticated users with... High Unreviewed

CVE-2014-6045 was published May 14, 2022

Previous 1…399400 Next

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,527 advisories