Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

11,523 advisories

Loading
SQL injection vulnerability in forcepasswd.do in the management GUI in Symantec LiveUpdate... High Unreviewed
CVE-2014-1645 was published May 17, 2022
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG... Moderate Unreviewed
CVE-2013-5012 was published May 17, 2022
SQL injection vulnerability in action.php in Leed (Light Feed), possibly before 1.5 Stable,... High Unreviewed
CVE-2013-2627 was published May 17, 2022
SQL injection vulnerability in download.php in Horizon Quick Content Management System (QCMS) 4.0... High Unreviewed
CVE-2013-7139 was published May 17, 2022
SQL injection vulnerability in the page-navigation implementation in Cybozu Garoon 2.0.0 through... Moderate Unreviewed
CVE-2013-6930 was published May 17, 2022
SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers... High Unreviewed
CVE-2014-1945 was published May 17, 2022
SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers... Moderate Unreviewed
CVE-2014-2317 was published May 17, 2022
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module... High Unreviewed
CVE-2013-5117 was published May 17, 2022
SQL injection vulnerability in portal/addtoapplication.php in POSH (aka Posh portal or Portaneo)... High Unreviewed
CVE-2014-2211 was published May 17, 2022
SQL injection vulnerability in lib/db.php in ownCloud Server 5.0.x before 5.0.6 allows remote... Moderate Unreviewed
CVE-2013-2045 was published May 17, 2022
A vulnerability, which was classified as critical, has been found in Movie Ticket Booking System.... Critical Unreviewed
CVE-2022-4248 was published Dec 1, 2022
The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a... High Unreviewed
CVE-2022-3849 was published Nov 28, 2022
SQL injection vulnerability in default.asp in CIS Manager CMS allows remote attackers to execute... High Unreviewed
CVE-2014-2847 was published May 17, 2022
steps/utils/save_pref.inc in Roundcube webmail before 0.8.7 and 0.9.x before 0.9.5 allows remote... High Unreviewed
CVE-2013-6172 was published May 17, 2022
SQL injection vulnerability in Domain Technologie Control (DTC) before 0.34.1 allows remote... Moderate Unreviewed
CVE-2011-3197 was published May 17, 2022
Multiple SQL injection vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to... High Unreviewed
CVE-2013-1803 was published May 17, 2022
SQL injection vulnerability in the API in Cybozu Garoon 3.7.x before 3.7.3 allows remote... Moderate Unreviewed
CVE-2013-6931 was published May 17, 2022
Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow remote attackers to execute... High Unreviewed
CVE-2013-2226 was published May 17, 2022
SQL injection vulnerability in the Submit_News module for PHP-Nuke 8.3 allows remote attackers to... High Unreviewed
CVE-2014-3934 was published May 17, 2022
SQL injection vulnerability in the Contextual Related Posts plugin before 1.8.10.2 for WordPress... High Unreviewed
CVE-2014-3937 was published May 17, 2022
SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti... High Unreviewed
CVE-2013-7369 was published May 17, 2022
SQL injection in net.mingsoft:ms-mcms Critical
CVE-2022-23899 was published for net.mingsoft:ms-mcms (Maven) Mar 4, 2022
Multiple SQL injection vulnerabilities in Sharetronix 3.1.1 allow remote attackers to execute... High Unreviewed
CVE-2013-5354 was published May 17, 2022
SQL injection in net.mingsoft:ms-mcms Critical
CVE-2022-23898 was published for net.mingsoft:ms-mcms (Maven) Mar 4, 2022
Multiple SQL injection vulnerabilities in NICE Recording eXpress (aka Cybertech eXpress) 6.5.7... High Unreviewed
CVE-2014-4305 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API