GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,899 advisories
Filter by severity
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially...
Moderate
Unreviewed
CVE-2016-8929
was published
May 17, 2022
Actian Matrix 5.1.x through 5.1.2.4 and 5.2.x through 5.2.0.1 allows remote authenticated users...
Moderate
Unreviewed
CVE-2015-3993
was published
May 17, 2022
Multiple SQL injection vulnerabilities in IPSwitch WhatsUp Gold before 16.4 allow remote...
Moderate
Unreviewed
CVE-2015-6004
was published
May 17, 2022
The affected product is vulnerable to multiple SQL injections that require low privileges for...
Moderate
Unreviewed
CVE-2022-2136
was published
Jul 23, 2022
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow...
Moderate
Unreviewed
CVE-2013-7175
was published
May 17, 2022
SQL injection vulnerability in the web interface in Cisco Unity Connection 9.1(1.2) and earlier...
Moderate
Unreviewed
CVE-2015-6299
was published
May 17, 2022
SQL injection vulnerability in Cisco Prime Collaboration Provisioning 10.6 and 11.0 allows remote...
Moderate
Unreviewed
CVE-2015-6329
was published
May 17, 2022
CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9...
Moderate
Unreviewed
CVE-2012-0868
was published
May 17, 2022
SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified...
Moderate
Unreviewed
CVE-2015-0699
was published
May 17, 2022
Multiple SQL injection vulnerabilities in a PHP script in the management console on Symantec Web...
Moderate
Unreviewed
CVE-2015-6548
was published
May 17, 2022
SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php in Cacti 0.8...
Moderate
Unreviewed
CVE-2015-8377
was published
May 17, 2022
SQL injection vulnerability in the "FAQ - Frequently Asked Questions" (js_faq) extension before 1...
Moderate
Unreviewed
CVE-2015-4612
was published
May 17, 2022
SQL injection vulnerability in the Smoelenboek (ncgov_smoelenboek) extension before 1.0.9 for...
Moderate
Unreviewed
CVE-2015-4611
was published
May 17, 2022
SQL injection vulnerability in the backend module in the Developer Log (devlog) extension before...
Moderate
Unreviewed
CVE-2015-4613
was published
May 17, 2022
SQL injection vulnerability in the PHPlist Integration Module before 6.x-1.7 for Drupal allows...
Moderate
Unreviewed
CVE-2015-3345
was published
May 17, 2022
Multiple SQL injection vulnerabilities in phpMyAdmin 3.5.x before 3.5.8.2 and 4.0.x before 4.0.4...
Moderate
Unreviewed
CVE-2013-5003
was published
May 17, 2022
SQL injection vulnerability in Subrion CMS before 3.3.3 allows remote authenticated users to...
Moderate
Unreviewed
CVE-2015-4129
was published
May 17, 2022
SQL injection vulnerability in the AdvanceSearch.class in AdventNetPassTrix.jar in ManageEngine...
Moderate
Unreviewed
CVE-2015-5459
was published
May 17, 2022
SQL injection vulnerability in the insert function in application/controllers/admin/dataentry.php...
Moderate
Unreviewed
CVE-2015-5078
was published
May 17, 2022
SQL injection vulnerability in the SQL database in Cisco Prime Collaboration Deployment before 11...
Moderate
Unreviewed
CVE-2016-1437
was published
May 17, 2022
SQL injection vulnerability in the serendipity_checkCommentToken function in include...
Moderate
Unreviewed
CVE-2015-6943
was published
May 17, 2022
SQL injection vulnerability in the Manager interface in Cisco Prime Collaboration 10.5(1) allows...
Moderate
Unreviewed
CVE-2015-4188
was published
May 17, 2022
Multiple SQL injection vulnerabilities in admin/class-bulk-editor-list-table.php in the WordPress...
Moderate
Unreviewed
CVE-2015-2292
was published
May 17, 2022
SQL injection vulnerability in Cisco Unified Communications Manager 11.0(0.98000.225) allows...
Moderate
Unreviewed
CVE-2015-6433
was published
May 17, 2022
SQL injection vulnerability in the web framework in Cisco Prime Service Catalog 11.0 allows...
Moderate
Unreviewed
CVE-2015-6350
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API