GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,972
Erlang
29
GitHub Actions
16
Go
1,762
Maven
4,983
npm
3,518
NuGet
609
pip
3,094
Pub
10
RubyGems
833
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,985 advisories
Filter by severity
Multiple SQL injection vulnerabilities in All In One Control Panel (AIOCP) 1.3.007 and earlier...
Moderate
Unreviewed
CVE-2006-5829
was published
May 1, 2022
SQL injection vulnerability in Sources/ManageBoards.php in Simple Machines Forum 1.1 RC3 allows...
Moderate
Unreviewed
CVE-2006-4564
was published
May 1, 2022
SQL injection vulnerability in manager/index.php in Etomite CMS 0.6.1 and earlier, with...
Moderate
Unreviewed
CVE-2006-3904
was published
May 1, 2022
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and ...
Moderate
Unreviewed
CVE-2006-3823
was published
May 1, 2022
SQL injection vulnerability in register.php for phpRaid 3.0.6 and possibly other versions, when...
Moderate
Unreviewed
CVE-2006-3318
was published
May 1, 2022
SQL injection vulnerability in class2.php in e107 0.7.2 and earlier allows remote attackers to...
Moderate
Unreviewed
CVE-2006-2416
was published
May 1, 2022
SQL injection vulnerability in Oracle Database Server 9.2.0.7 and 10.1.0.5 allows remote...
Moderate
Unreviewed
CVE-2006-1871
was published
May 1, 2022
SQL injection vulnerability in the display function in the Topics module for MAXdev MDPro (MD-Pro...
Moderate
Unreviewed
CVE-2006-1676
was published
May 1, 2022
SQL injection vulnerability in showflat.php in UBB.threads 5.5.1, 6.0 br5, 6.0.1, 6.0.2, and...
Moderate
Unreviewed
CVE-2006-1423
was published
May 1, 2022
SQL injection vulnerability in @1 File Store 2006.03.07 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2006-1278
was published
May 1, 2022
Unspecified vulnerability in the Streams Capture component of Oracle Database server 10.1.0.5 and...
Moderate
Unreviewed
CVE-2006-0269
was published
May 1, 2022
Multiple SQL injection vulnerabilities in Wordcircle 2.17 allow remote attackers to (1) execute...
Moderate
Unreviewed
CVE-2006-0205
was published
May 1, 2022
SQL injection vulnerability in Neocrome Land Down Under (LDU) 801 allows remote attackers to...
Moderate
Unreviewed
CVE-2005-4711
was published
May 1, 2022
** DISPUTED ** SQL injection vulnerability in server_privileges.php in phpMyAdmin 2.7.0 allows...
Moderate
Unreviewed
CVE-2005-4349
was published
May 1, 2022
SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows...
Moderate
Unreviewed
CVE-2005-3996
was published
May 1, 2022
SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when...
Moderate
Unreviewed
CVE-2005-3543
was published
May 1, 2022
SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify...
Moderate
Unreviewed
CVE-2005-3046
was published
May 1, 2022
SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier,...
Moderate
Unreviewed
CVE-2004-2751
was published
Apr 29, 2022
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS...
Moderate
Unreviewed
CVE-2004-1339
was published
Apr 29, 2022
SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2003-1520
was published
Apr 29, 2022
Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 5.6 and 6.5 allow remote...
Moderate
Unreviewed
CVE-2003-1340
was published
Apr 29, 2022
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php...
Moderate
Unreviewed
CVE-2022-27127
was published
Apr 11, 2022
Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities...
Moderate
Unreviewed
CVE-2022-27991
was published
Apr 9, 2022
Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability...
Moderate
Unreviewed
CVE-2022-24231
was published
Apr 6, 2022
An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey...
Moderate
Unreviewed
CVE-2021-40645
was published
Mar 31, 2022
ProTip!
Advisories are also available from the
GraphQL API