GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,224
Erlang
31
GitHub Actions
19
Go
1,990
Maven
5,000+
npm
3,706
NuGet
661
pip
3,336
Pub
11
RubyGems
884
Rust
845
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,461 advisories
Filter by severity
SQL injection vulnerability in team.php in the Teams Structure module 3.0 for PHP-Fusion allows...
Moderate
Unreviewed
CVE-2011-0512
was published
May 17, 2022
SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, when magic_quotes_gpc is...
Moderate
Unreviewed
CVE-2011-0443
was published
May 17, 2022
Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled...
Moderate
Unreviewed
CVE-2010-4799
was published
May 17, 2022
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is...
Moderate
Unreviewed
CVE-2010-4752
was published
May 17, 2022
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is...
Moderate
Unreviewed
CVE-2010-4751
was published
May 17, 2022
Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries...
Moderate
Unreviewed
CVE-2022-25223
was published
Mar 24, 2022
A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10...
Moderate
Unreviewed
CVE-2022-0842
was published
Mar 24, 2022
CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint ...
Moderate
Unreviewed
CVE-2021-43701
was published
Mar 30, 2022
SQL injection vulnerability in modules/sections/index.php in E-Xoopport Samsara 3.1 and earlier,...
Moderate
Unreviewed
CVE-2010-3467
was published
May 17, 2022
Multiple SQL injection vulnerabilities in login.php in ApPHP PHP MicroCMS 1.0.1, when...
Moderate
Unreviewed
CVE-2010-3481
was published
May 17, 2022
An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort-by parameter of the search...
Moderate
Unreviewed
CVE-2022-24956
was published
Mar 30, 2022
An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey...
Moderate
Unreviewed
CVE-2021-40645
was published
Mar 31, 2022
An SQL Injection vulnerability exists in oasys oa_system as of 9/7/2021 in resources/mappers...
Moderate
Unreviewed
CVE-2021-40644
was published
Mar 31, 2022
Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability...
Moderate
Unreviewed
CVE-2022-24231
was published
Apr 6, 2022
Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities...
Moderate
Unreviewed
CVE-2022-27991
was published
Apr 9, 2022
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php...
Moderate
Unreviewed
CVE-2022-27127
was published
Apr 11, 2022
SQL injection vulnerability in index.php in GaleriaSHQIP 1.0, when magic_quotes_gpc is disabled,...
Moderate
Unreviewed
CVE-2010-3207
was published
May 17, 2022
Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.1.28...
Moderate
Unreviewed
CVE-2013-0375
was published
May 5, 2022
An exploitable SQL injection vulnerability exists in the unauthenticated portion of eFront LMS,...
Moderate
Unreviewed
CVE-2019-5070
was published
May 24, 2022
SQL injection vulnerability via IAPService in Samsung Checkout prior to version 5.0.53.1 allows...
Moderate
Unreviewed
CVE-2022-36839
was published
Aug 6, 2022
A vulnerability has been identified in Desigo Insight (All versions). The web service does not...
Moderate
Unreviewed
CVE-2020-15792
was published
May 24, 2022
The Nexos theme through 1.7 for WordPress allows side-map/?search_order= SQL Injection.
Moderate
Unreviewed
CVE-2020-15363
was published
May 24, 2022
Multiple SQL injection vulnerabilities in OCS Inventory NG before 1.02.3 allow remote attackers...
Moderate
Unreviewed
CVE-2010-1733
was published
May 17, 2022
Nokia Broadcast Message Center through 11.1.0 allows an authenticated user to perform a Boolean...
Moderate
Unreviewed
CVE-2021-35487
was published
May 26, 2022
SQL injection vulnerability in IBM WebSphere Commerce 6.0 before 6.0.0.10 allows remote...
Moderate
Unreviewed
CVE-2010-2635
was published
May 17, 2022
ProTip!
Advisories are also available from the
GraphQL API