GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
1,899 advisories
Filter by severity
SQL injection vulnerability in ticket.php in TickFa 1.x allows remote authenticated users to...
Moderate
Unreviewed
CVE-2015-4676
was published
May 17, 2022
SQL injection vulnerability in the wt_directory extension before 1.4.2 for TYPO3 allows remote...
Moderate
Unreviewed
CVE-2015-4609
was published
May 17, 2022
SQL injection vulnerability in Cisco Unified Communications Manager 10.5(2.13900.9) allows remote...
Moderate
Unreviewed
CVE-2016-1308
was published
May 17, 2022
SQL injection vulnerability in IBM BigFix Remote Control before 9.1.3 allows remote authenticated...
Moderate
Unreviewed
CVE-2016-2950
was published
May 17, 2022
SQL injection vulnerability in the API in IBM OpenPages GRC Platform 7.0 before 7.0.0.4 IF3 and 7...
Moderate
Unreviewed
CVE-2015-5049
was published
May 17, 2022
SQL injection vulnerability in the management application in Cisco Unified Operations Manager...
Moderate
Unreviewed
CVE-2013-3437
was published
May 17, 2022
SQL injection vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote...
Moderate
Unreviewed
CVE-2015-2035
was published
May 17, 2022
Multiple SQL injection vulnerabilities in Misys FusionCapital Opics Plus allow remote...
Moderate
Unreviewed
CVE-2016-5653
was published
May 17, 2022
SQL injection vulnerability in BulkViewFileContentsAction.java in the Java interface in Cisco...
Moderate
Unreviewed
CVE-2014-3287
was published
May 17, 2022
SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5...
Moderate
Unreviewed
CVE-2015-7448
was published
May 17, 2022
SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote authenticated...
Moderate
Unreviewed
CVE-2016-2301
was published
May 17, 2022
SQL injection vulnerability in Emerson AMS Device Manager before 13 allows remote authenticated...
Moderate
Unreviewed
CVE-2015-1008
was published
May 17, 2022
SQL injection vulnerability in IBM Curam Social Program Management 6.1 before 6.1.1 allows remote...
Moderate
Unreviewed
CVE-2015-5023
was published
May 17, 2022
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows...
Moderate
Unreviewed
CVE-2014-2949
was published
May 17, 2022
SQL injection vulnerability in the BOKUBLOCK (1) BbAdminViewsControl213 plugin before 1.1 and (2)...
Moderate
Unreviewed
CVE-2015-7784
was published
May 17, 2022
SQL injection vulnerability in list.php in phpRechnung before 1.6.5 allows remote authenticated...
Moderate
Unreviewed
CVE-2015-5648
was published
May 17, 2022
SQL injection vulnerability in IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5...
Moderate
Unreviewed
CVE-2015-1989
was published
May 17, 2022
SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x...
Moderate
Unreviewed
CVE-2015-5659
was published
May 17, 2022
Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00...
Moderate
Unreviewed
CVE-2015-7727
was published
May 17, 2022
Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00...
Moderate
Unreviewed
CVE-2015-7725
was published
May 17, 2022
SQL injection vulnerability in the web framework in Cisco Identity Services Engine (ISE) 1.2(.1...
Moderate
Unreviewed
CVE-2014-3275
was published
May 17, 2022
SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0...
Moderate
Unreviewed
CVE-2015-7903
was published
May 17, 2022
SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400...
Moderate
Unreviewed
CVE-2015-6486
was published
May 17, 2022
SQL injection vulnerability in the administrative web interface in Cisco Unified Communications...
Moderate
Unreviewed
CVE-2015-0715
was published
May 17, 2022
SQL injection vulnerability in the Image Management component in Cisco Unified Communications...
Moderate
Unreviewed
CVE-2015-0684
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API