Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+

12,684 advisories

Loading
Bluecms 1.6 has a SQL injection vulnerability at cooike. Critical Unreviewed
CVE-2022-27962 was published May 4, 2022
EmpireCMS 7.5 has a SQL injection vulnerability in AdClass.php Critical Unreviewed
CVE-2022-28585 was published May 4, 2022
Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-27413 was published May 4, 2022
SQL injection vulnerability in CA Clever Path Portal allows remote authenticated users to execute... Moderate Unreviewed
CVE-2007-2230 was published May 3, 2022
The SiteSuperCharger WordPress plugin before 5.2.0 does not validate, sanitise and escape various... Critical Unreviewed
CVE-2022-0771 was published May 3, 2022
MCMS v5.2.27 was discovered to contain a SQL injection vulnerability in the orderBy parameter at ... Critical Unreviewed
CVE-2022-27466 was published May 3, 2022
The Documentor WordPress plugin through 1.5.3 fails to sanitize and escape user input before it... Critical Unreviewed
CVE-2022-0773 was published May 3, 2022
The Multiple Shipping Address Woocommerce WordPress plugin before 2.0 does not properly sanitise... Critical Unreviewed
CVE-2022-0783 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1366 was published May 3, 2022
The Photo Gallery WordPress plugin through 1.6.3 does not properly escape the $_POST['filter_tag'... Critical Unreviewed
CVE-2022-1281 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1367 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1376 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1369 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1374 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1371 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1370 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1372 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1377 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1375 was published May 3, 2022
Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed
CVE-2022-1378 was published May 3, 2022
Multiple SQL injection vulnerabilities in WebAsyst Shop-Script FREE allow attackers to execute... High Unreviewed
CVE-2010-1463 was published May 2, 2022
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote... High Unreviewed
CVE-2010-1431 was published May 2, 2022
SQL injection vulnerability in MODx Evolution before 1.0.3 allows remote attackers to execute... High Unreviewed
CVE-2010-1426 was published May 2, 2022
SQL injection vulnerability in the HD FLV Player (com_hdflvplayer) component 1.3 for Joomla!... High Unreviewed
CVE-2010-1372 was published May 2, 2022
SQL injection vulnerability in signup.asp in Pre Classified Listings ASP allows remote attackers... High Unreviewed
CVE-2010-1369 was published May 2, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database