GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,967
Erlang
29
GitHub Actions
16
Go
1,748
Maven
4,978
npm
3,509
NuGet
609
pip
3,073
Pub
10
RubyGems
832
Rust
781
Swift
34
Unreviewed advisories
All unreviewed
5,000+
229 advisories
Filter by severity
SQL Injection in Pimcore
High
CVE-2022-1219
was published
for
pimcore/pimcore
(Composer)
Apr 9, 2022
SQL Injection in Pimcore
High
CVE-2022-1339
was published
for
pimcore/pimcore
(Composer)
Apr 14, 2022
TYPO3 SQL injection vulnerability on the backend
High
CVE-2010-3662
was published
for
typo3/cms-backend
(Composer)
Apr 21, 2022
Typo3 SQL injection due to faulty prepared statements
Critical
CVE-2011-3583
was published
for
typo3/cms
(Composer)
Apr 22, 2022
Drupal SQL Injection vulnerability
Critical
CVE-2011-2715
was published
for
drupal/core
(Composer)
Apr 22, 2022
SQL Injection found in Pimcore
High
CVE-2022-1429
was published
for
pimcore/pimcore
(Composer)
Apr 23, 2022
Contao core SQL Injection Vulnerability
High
CVE-2012-4383
was published
for
contao/core
(Composer)
Apr 23, 2022
Dolibarr SQL Injection vulnerability
Critical
CVE-2018-9019
was published
for
dolibarr/dolibarr
(Composer)
May 13, 2022
SQL Injection in Zenario 7.1-7.6
High
CVE-2018-5960
was published
for
tribalsystems/zenario
(Composer)
May 13, 2022
Centreon allows SNMP trap SQL Injection
Critical
CVE-2018-19281
was published
for
centreon/centreon
(Composer)
May 14, 2022
Centreon SQL Injection
High
CVE-2018-19312
was published
for
centreon/centreon
(Composer)
May 14, 2022
Centreon SQL Injection
High
CVE-2018-19271
was published
for
centreon/centreon
(Composer)
May 14, 2022
Silverstripe Framework SQLi Vulnerability
Critical
CVE-2019-5715
was published
for
silverstripe/framework
(Composer)
May 14, 2022
LibreNMS SQL Injection
High
CVE-2018-20678
was published
for
librenms/librenms
(Composer)
May 14, 2022
GeniXCMS SQL injection vulnerability
High
CVE-2017-5346
was published
for
genix/cms
(Composer)
May 14, 2022
baserCMS SQL Injection vulnerability
Critical
CVE-2017-10842
was published
for
baserproject/basercms
(Composer)
May 14, 2022
Dolibarr SQL injection via the integer parameters qty and value_unit
Critical
CVE-2018-16809
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
phpMyAdmin SQL injection in Designer feature
Critical
CVE-2019-6798
was published
for
phpmyadmin/phpmyadmin
(Composer)
May 14, 2022
Shopware SQL Injection
High
CVE-2018-20713
was published
for
shopware/shopware
(Composer)
May 14, 2022
Dolibarr SQL injection vulnerability in user/card.php
High
CVE-2018-19998
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
Dolibarr error-based SQL injection vulnerability in product/card.php
High
CVE-2018-19994
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
ThinkPHP SQLi Vulnerability
Critical
CVE-2018-18546
was published
for
topthink/framework
(Composer)
May 14, 2022
ThinkPHP SQLi Vulnerability
Critical
CVE-2018-18530
was published
for
topthink/framework
(Composer)
May 14, 2022
ThinkPHP SQLi Vulnerability
Critical
CVE-2018-18529
was published
for
topthink/framework
(Composer)
May 14, 2022
ThinkPHP SQL injection vulnerability
Critical
CVE-2018-17566
was published
for
topthink/framework
(Composer)
May 14, 2022
ProTip!
Advisories are also available from the
GraphQL API