GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,056
Erlang
29
GitHub Actions
19
Go
1,889
Maven
5,000+
npm
3,618
NuGet
638
pip
3,231
Pub
10
RubyGems
854
Rust
817
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,452 advisories
Filter by severity
Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter...
Critical
Unreviewed
CVE-2022-26268
was published
Mar 29, 2022
TuziCMS 2.0.6 is affected by SQL injection in \App\Manage\Controller\BannerController.class.php.
Critical
Unreviewed
CVE-2022-23882
was published
Mar 29, 2022
The Popup Builder WordPress plugin before 4.1.1 does not sanitise and escape the sgpb...
Critical
Unreviewed
CVE-2022-0479
was published
Mar 29, 2022
A SQL Injection vulnerability exits in the Ramo plugin for GLPI 9.4.6 via the idu parameter in...
Critical
Unreviewed
CVE-2021-44617
was published
Mar 29, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26887
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-25880
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26059
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26666
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26514
was published
Mar 30, 2022
TuziCMS v2.0.6 was discovered to contain a SQL injection vulnerability via the component App...
Critical
Unreviewed
CVE-2022-26301
was published
Mar 26, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26013
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-25980
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26836
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26065
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26069
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26338
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-27175
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26667
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-26349
was published
Mar 30, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection...
Critical
Unreviewed
CVE-2022-0923
was published
Mar 30, 2022
A vulnerability was found in SourceCodester College Website Management System 1.0. It has been...
Critical
Unreviewed
CVE-2022-1078
was published
Mar 30, 2022
A vulnerability was found in SourceCodester Microfinance Management System 1.0. It has been rated...
Critical
Unreviewed
CVE-2022-1082
was published
Mar 30, 2022
A vulnerability was found in SourceCodester One Church Management System 1.0. It has been...
Critical
Unreviewed
CVE-2022-1080
was published
Mar 30, 2022
A Remote Code Execution (RCE) vulnerability exists in Simple Client Management System 1.0 in...
Critical
Unreviewed
CVE-2021-43484
was published
Apr 1, 2022
An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate...
Critical
Unreviewed
CVE-2022-23797
was published
Mar 31, 2022
ProTip!
Advisories are also available from the
GraphQL API