Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,752
Maven
4,982
npm
3,516
NuGet
609
pip
3,087
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

6,018 advisories

Loading
Multiple SQL injection vulnerabilities in Pentasoft Avactis Shopping Cart 1.9.1 build 8356 free... High Unreviewed
CVE-2010-4147 was published May 17, 2022
The Sync WooCommerce Product feed to Google Shopping WordPress plugin through 1.2.4 uses the ... High Unreviewed
CVE-2021-25068 was published Mar 29, 2022
SQL injection vulnerability in Aimluck Aipo before 5.1.0.1 allows remote authenticated users to... High Unreviewed
CVE-2010-3924 was published May 17, 2022
SQL injection vulnerability in the QuickFAQ (com_quickfaq) component 1.0.3 for Joomla! allows... High Unreviewed
CVE-2010-2845 was published May 17, 2022
SQL injection vulnerability in the Joomdle (com_joomdle) component 0.24 and earlier for Joomla!... High Unreviewed
CVE-2010-2908 was published May 17, 2022
SQL injection vulnerability in the Publisher module in eNdonesia 8.4 allows remote attackers to... High Unreviewed
CVE-2010-3461 was published May 17, 2022
SQL injection vulnerability in radyo.asp in Kisisel Radyo Script allows remote attackers to... High Unreviewed
CVE-2010-4144 was published May 17, 2022
SQL injection vulnerability in the Pulse Infotech Sponsor Wall (com_sponsorwall) component 1.1... High Unreviewed
CVE-2010-4272 was published May 17, 2022
An SQL Injection vulnerability exits in PuneethReddyHC online-shopping-system as of 11/01/2021... High Unreviewed
CVE-2021-43109 was published Mar 30, 2022
SQL injection vulnerability in the Yr Weatherdata module for Drupal 6.x before 6.x-1.6 allows... High Unreviewed
CVE-2010-3423 was published May 17, 2022
SQL injection vulnerability in MODx Evolution 1.0.4 and earlier allows remote attackers to... High Unreviewed
CVE-2010-3929 was published May 17, 2022
SQL injection vulnerability in index.php in Kayako eSupport 3.70.02 allows remote attackers to... High Unreviewed
CVE-2010-2911 was published May 17, 2022
SQL injection vulnerability in the Huru Helpdesk (com_huruhelpdesk) component for Joomla! allows... High Unreviewed
CVE-2010-2907 was published May 17, 2022
SQL injection vulnerability in process.asp in OnlineTechTools Online Work Order System (OWOS)... High Unreviewed
CVE-2010-4186 was published May 17, 2022
Multiple SQL injection vulnerabilities in eshtery CMS (aka eshtery.com) allow remote attackers to... High Unreviewed
CVE-2010-3404 was published May 17, 2022
SQL injection vulnerability in imoveis.php in DescargarVista ACC IMoveis 1.1 allows remote... High Unreviewed
CVE-2010-4273 was published May 17, 2022
SQL injection vulnerability in list.php in BoutikOne 1.0 allows remote attackers to execute... High Unreviewed
CVE-2010-3479 was published May 17, 2022
SQL injection vulnerability in articlesdetails.php in ScriptsFeed and BrotherScripts (BS) Scripts... High Unreviewed
CVE-2010-2906 was published May 17, 2022
SQL injection vulnerability in the Ozio Gallery (com_oziogallery) component for Joomla! allows... High Unreviewed
CVE-2010-2910 was published May 17, 2022
SQL injection vulnerability in welcome.php in AJ Square AJ HYIP PRIME allows remote attackers to... High Unreviewed
CVE-2010-2915 was published May 17, 2022
SQL injection vulnerability in info.php in ScriptsFeed and BrotherScripts (BS) Scripts Directory... High Unreviewed
CVE-2010-2905 was published May 17, 2022
An SQL Injection vulnerabilty exists in Kreado Kreasfero 1.5 via the id parameter. High Unreviewed
CVE-2021-44581 was published Mar 30, 2022
SQL Injection in Dolibarr High
CVE-2021-36625 was published for dolibarr/dolibarr (Composer) Apr 1, 2022
A function in MDT AutoSave versions prior to v6.02.06 is used to retrieve system information for... High Unreviewed
CVE-2021-32957 was published Apr 3, 2022
SQL Injection in elide-datastore-aggregation High
CVE-2022-24827 was published for com.yahoo.elide:elide-datastore-aggregation (Maven) Apr 8, 2022
ProTip! Advisories are also available from the GraphQL API