GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,978
Erlang
29
GitHub Actions
16
Go
1,765
Maven
4,990
npm
3,536
NuGet
616
pip
3,105
Pub
10
RubyGems
837
Rust
786
Swift
34
Unreviewed advisories
All unreviewed
5,000+
174 advisories
Filter by severity
phpMyFAQ SQL Injection at "Save News"
High
CVE-2024-27299
was published
for
phpmyfaq/phpmyfaq
(Composer)
Mar 25, 2024
Centreon updateDirectory SQL Injection Remote Code Execution Vulnerability
High
CVE-2024-0637
was published
for
centreon/centreon
(Composer)
Apr 2, 2024
Centreon updateLCARelation SQL Injection Remote Code Execution Vulnerability
High
CVE-2024-23116
was published
for
centreon/centreon
(Composer)
Apr 2, 2024
Centreon updateGroups SQL Injection Remote Code Execution Vulnerability
High
CVE-2024-23115
was published
for
centreon/centreon
(Composer)
Apr 2, 2024
Centreon updateContactServiceCommands SQL Injection Remote Code Execution Vulnerability
High
CVE-2024-23117
was published
for
centreon/centreon
(Composer)
Apr 2, 2024
Centreon updateContactHostCommands SQL Injection Remote Code Execution Vulnerability
High
CVE-2024-23118
was published
for
centreon/centreon
(Composer)
Apr 2, 2024
Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability
High
CVE-2024-23119
was published
for
centreon/centreon
(Composer)
Apr 2, 2024
Moodle SQL Injection vulnerability
High
CVE-2023-30944
was published
for
moodle/moodle
(Composer)
May 2, 2023
Moodle SQL Injection vulnerability
High
CVE-2023-28329
was published
for
moodle/moodle
(Composer)
Mar 23, 2023
LibreNMS vulnerable to SQL injection time-based leads to database extraction
High
CVE-2024-32461
was published
for
librenms/librenms
(Composer)
Apr 22, 2024
LibreNMS vulnerable to a Time-Based Blind SQL injection leads to database extraction
High
CVE-2024-32480
was published
for
librenms/librenms
(Composer)
Apr 22, 2024
MODX Revolution blind SQL injection
High
CVE-2017-1000067
was published
for
modx/revolution
(Composer)
May 17, 2022
Moodle Blind SQL injection possible via MNet authentication
High
CVE-2021-32474
was published
for
moodle/moodle
(Composer)
Mar 12, 2022
phpMyAdmin SQL injection in user accounts page
High
CVE-2020-5504
was published
for
phpmyadmin/phpmyadmin
(Composer)
May 24, 2022
phpMyAdmin SQL injection vulnerability
High
CVE-2020-10802
was published
for
phpmyadmin/phpmyadmin
(Composer)
May 24, 2022
phpMyAdmin SQL Injection
High
CVE-2020-10804
was published
for
phpmyadmin/phpmyadmin
(Composer)
May 24, 2022
Dolibarr SQL injection vulnerability in accountancy/customer/card.php
High
CVE-2020-14443
was published
for
dolibarr/dolibarr
(Composer)
May 24, 2022
Dolibarr SQL injection via type parameter in product/stats/card.php
High
CVE-2017-9839
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
Dolibarr SQL injection vulnerability
High
CVE-2017-18260
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
Dolibarr error-based SQL injection vulnerability in product/card.php
High
CVE-2018-19994
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
Dolibarr SQL injection vulnerability in user/card.php
High
CVE-2018-19998
was published
for
dolibarr/dolibarr
(Composer)
May 14, 2022
IBAX go-ibax vulnerable to SQL injection
High
CVE-2022-3802
was published
for
github.com/IBAX-io/go-ibax
(Go)
Nov 1, 2022
IBAX go-ibax vulnerable to SQL injection
High
CVE-2022-3801
was published
for
github.com/IBAX-io/go-ibax
(Go)
Nov 1, 2022
IBAX go-ibax vulnerable to SQL injection
High
CVE-2022-3799
was published
for
github.com/IBAX-io/go-ibax
(Go)
Nov 1, 2022
ProTip!
Advisories are also available from the
GraphQL API