Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,958
Erlang
29
GitHub Actions
16
Go
1,745
Maven
4,971
npm
3,507
NuGet
609
pip
3,066
Pub
10
RubyGems
832
Rust
780
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,953 advisories

SQL injection vulnerability in the display function in the Topics module for MAXdev MDPro (MD-Pro... Moderate Unreviewed
CVE-2006-1676 was published May 1, 2022
SQL injection vulnerability in showflat.php in UBB.threads 5.5.1, 6.0 br5, 6.0.1, 6.0.2, and... Moderate Unreviewed
CVE-2006-1423 was published May 1, 2022
SQL injection vulnerability in @1 File Store 2006.03.07 allows remote attackers to execute... Moderate Unreviewed
CVE-2006-1278 was published May 1, 2022
Unspecified vulnerability in the Streams Capture component of Oracle Database server 10.1.0.5 and... Moderate Unreviewed
CVE-2006-0269 was published May 1, 2022
Multiple SQL injection vulnerabilities in Wordcircle 2.17 allow remote attackers to (1) execute... Moderate Unreviewed
CVE-2006-0205 was published May 1, 2022
SQL injection vulnerability in Neocrome Land Down Under (LDU) 801 allows remote attackers to... Moderate Unreviewed
CVE-2005-4711 was published May 1, 2022
** DISPUTED ** SQL injection vulnerability in server_privileges.php in phpMyAdmin 2.7.0 allows... Moderate Unreviewed
CVE-2005-4349 was published May 1, 2022
SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows... Moderate Unreviewed
CVE-2005-3996 was published May 1, 2022
SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when... Moderate Unreviewed
CVE-2005-3543 was published May 1, 2022
SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify... Moderate Unreviewed
CVE-2005-3046 was published May 1, 2022
SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier,... Moderate Unreviewed
CVE-2004-2751 was published Apr 29, 2022
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS... Moderate Unreviewed
CVE-2004-1339 was published Apr 29, 2022
SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute... Moderate Unreviewed
CVE-2003-1520 was published Apr 29, 2022
Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 5.6 and 6.5 allow remote... Moderate Unreviewed
CVE-2003-1340 was published Apr 29, 2022
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php... Moderate Unreviewed
CVE-2022-27127 was published Apr 11, 2022
Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities... Moderate Unreviewed
CVE-2022-27991 was published Apr 9, 2022
Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability... Moderate Unreviewed
CVE-2022-24231 was published Apr 6, 2022
An SQL Injection vulnerability exists in oasys oa_system as of 9/7/2021 in resources/mappers... Moderate Unreviewed
CVE-2021-40644 was published Mar 31, 2022
An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey... Moderate Unreviewed
CVE-2021-40645 was published Mar 31, 2022
An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort-by parameter of the search... Moderate Unreviewed
CVE-2022-24956 was published Mar 30, 2022
CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint ... Moderate Unreviewed
CVE-2021-43701 was published Mar 30, 2022
A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10... Moderate Unreviewed
CVE-2022-0842 was published Mar 24, 2022
Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries... Moderate Unreviewed
CVE-2022-25223 was published Mar 24, 2022
SQL Injection in FreeTAKServer-UI Moderate
CVE-2022-25506 was published for FreeTAKServer-UI (pip) Mar 12, 2022
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5. Moderate Unreviewed
CVE-2022-0754 was published Mar 8, 2022
ProTip! Advisories are also available from the GraphQL API