GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,765
Maven
4,990
npm
3,536
NuGet
616
pip
3,105
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
202 advisories
Filter by severity
SQL injection in Moodle
Critical
CVE-2022-0332
was published
for
moodle/moodle
(Composer)
Jan 28, 2022
SQL Injection in JeecgBoot
Critical
CVE-2021-46089
was published
for
org.jeecgframework.boot:jeecg-boot-base
(Maven)
Jan 26, 2022
SQL injection in Dolibarr
Critical
CVE-2022-4093
was published
for
dolibarr/dolibarr
(Composer)
Nov 21, 2022
SQL injection in MCMS
Critical
CVE-2021-44868
was published
for
net.mingsoft:ms-mcms
(Maven)
Feb 18, 2022
SQL injection in francoisjacquet/rosariosis
Critical
CVE-2021-44567
was published
for
francoisjacquet/rosariosis
(Composer)
Feb 25, 2022
SQL Injection in Jeecg-boot
Critical
CVE-2022-22881
was published
for
org.jeecgframework.boot:jeecg-boot-base
(Maven)
Feb 17, 2022
SQL Injection in Jeecg-boot
Critical
CVE-2022-22880
was published
for
org.jeecgframework.boot:jeecg-boot-base
(Maven)
Feb 17, 2022
gosqljson SQL Injection vulnerability
Critical
CVE-2014-125064
was published
for
github.com/elgs/gosqljson
(Go)
Jan 7, 2023
GeoServer OGC Filter SQL Injection Vulnerabilities
Critical
CVE-2023-25157
was published
for
org.geoserver.community:gs-jdbcconfig
(Maven)
Feb 22, 2023
GeoTools OGC Filter SQL Injection Vulnerabilities
Critical
CVE-2023-25158
was published
for
org.geotools:gt-jdbc
(Maven)
Feb 22, 2023
Sequelize vulnerable to SQL Injection via replacements
Critical
CVE-2023-25813
was published
for
sequelize
(npm)
Feb 22, 2023
Moodle SQL Injection vulnerability
Critical
CVE-2021-36393
was published
for
moodle/moodle
(Composer)
Mar 6, 2023
Moodle SQL Injection vulnerability
Critical
CVE-2021-36392
was published
for
moodle/moodle
(Composer)
Mar 6, 2023
SQL Injection in Funadmin
Critical
CVE-2023-24780
was published
for
funadmin/funadmin
(Composer)
Mar 8, 2023
SQL Injection in Funadmin
Critical
CVE-2023-24777
was published
for
funadmin/funadmin
(Composer)
Mar 9, 2023
SQL Injection in Funadmin
Critical
CVE-2023-24773
was published
for
funadmin/funadmin
(Composer)
Mar 8, 2023
SQL Injection in Funadmin
Critical
CVE-2023-24775
was published
for
funadmin/funadmin
(Composer)
Mar 7, 2023
SQL Injection in Funadmin
Critical
CVE-2023-24781
was published
for
funadmin/funadmin
(Composer)
Mar 7, 2023
SQL Injection in Funadmin
Critical
CVE-2023-24782
was published
for
funadmin/funadmin
(Composer)
Mar 8, 2023
Funadmin vulnerable to SQL injection
Critical
CVE-2023-24774
was published
for
funadmin/funadmin
(Composer)
Mar 10, 2023
jeecg-boot SQL Injection vulnerability
Critical
CVE-2023-1454
was published
for
org.jeecgframework.boot:jeecg-boot-common
(Maven)
Mar 17, 2023
feathers-sequelize contains improper input validation leading to SQL injection
Critical
CVE-2022-2422
was published
for
feathers-sequelize
(npm)
Oct 26, 2022
Ming-Soft MCMS vulnerable to SQL injection
Critical
CVE-2020-20913
was published
for
net.mingsoft:ms-mcms
(Maven)
Apr 4, 2023
jeecg-boot vulnerable to SQL injection
Critical
CVE-2023-1741
was published
for
org.jeecgframework.boot:jeecg-boot-parent
(Maven)
Mar 31, 2023
ProTip!
Advisories are also available from the
GraphQL API