GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
11,523 advisories
Filter by severity
SQL injection vulnerability in forcepasswd.do in the management GUI in Symantec LiveUpdate...
High
Unreviewed
CVE-2014-1645
was published
May 17, 2022
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG...
Moderate
Unreviewed
CVE-2013-5012
was published
May 17, 2022
SQL injection vulnerability in action.php in Leed (Light Feed), possibly before 1.5 Stable,...
High
Unreviewed
CVE-2013-2627
was published
May 17, 2022
SQL injection vulnerability in download.php in Horizon Quick Content Management System (QCMS) 4.0...
High
Unreviewed
CVE-2013-7139
was published
May 17, 2022
SQL injection vulnerability in the page-navigation implementation in Cybozu Garoon 2.0.0 through...
Moderate
Unreviewed
CVE-2013-6930
was published
May 17, 2022
SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers...
High
Unreviewed
CVE-2014-1945
was published
May 17, 2022
SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers...
Moderate
Unreviewed
CVE-2014-2317
was published
May 17, 2022
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module...
High
Unreviewed
CVE-2013-5117
was published
May 17, 2022
SQL injection vulnerability in portal/addtoapplication.php in POSH (aka Posh portal or Portaneo)...
High
Unreviewed
CVE-2014-2211
was published
May 17, 2022
SQL injection vulnerability in lib/db.php in ownCloud Server 5.0.x before 5.0.6 allows remote...
Moderate
Unreviewed
CVE-2013-2045
was published
May 17, 2022
A vulnerability, which was classified as critical, has been found in Movie Ticket Booking System....
Critical
Unreviewed
CVE-2022-4248
was published
Dec 1, 2022
The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a...
High
Unreviewed
CVE-2022-3849
was published
Nov 28, 2022
SQL injection vulnerability in default.asp in CIS Manager CMS allows remote attackers to execute...
High
Unreviewed
CVE-2014-2847
was published
May 17, 2022
steps/utils/save_pref.inc in Roundcube webmail before 0.8.7 and 0.9.x before 0.9.5 allows remote...
High
Unreviewed
CVE-2013-6172
was published
May 17, 2022
SQL injection vulnerability in Domain Technologie Control (DTC) before 0.34.1 allows remote...
Moderate
Unreviewed
CVE-2011-3197
was published
May 17, 2022
Multiple SQL injection vulnerabilities in PHP-Fusion before 7.02.06 allow remote attackers to...
High
Unreviewed
CVE-2013-1803
was published
May 17, 2022
SQL injection vulnerability in the API in Cybozu Garoon 3.7.x before 3.7.3 allows remote...
Moderate
Unreviewed
CVE-2013-6931
was published
May 17, 2022
Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow remote attackers to execute...
High
Unreviewed
CVE-2013-2226
was published
May 17, 2022
SQL injection vulnerability in the Submit_News module for PHP-Nuke 8.3 allows remote attackers to...
High
Unreviewed
CVE-2014-3934
was published
May 17, 2022
SQL injection vulnerability in the Contextual Related Posts plugin before 1.8.10.2 for WordPress...
High
Unreviewed
CVE-2014-3937
was published
May 17, 2022
SQL injection vulnerability in an unspecified DLL in the FSDBCom ActiveX control in F-Secure Anti...
High
Unreviewed
CVE-2013-7369
was published
May 17, 2022
SQL injection in net.mingsoft:ms-mcms
Critical
CVE-2022-23899
was published
for
net.mingsoft:ms-mcms
(Maven)
Mar 4, 2022
Multiple SQL injection vulnerabilities in Sharetronix 3.1.1 allow remote attackers to execute...
High
Unreviewed
CVE-2013-5354
was published
May 17, 2022
SQL injection in net.mingsoft:ms-mcms
Critical
CVE-2022-23898
was published
for
net.mingsoft:ms-mcms
(Maven)
Mar 4, 2022
Multiple SQL injection vulnerabilities in NICE Recording eXpress (aka Cybertech eXpress) 6.5.7...
High
Unreviewed
CVE-2014-4305
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API