Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

2,628 advisories

Loading
The Futurio Extra WordPress plugin before 1.6.3 is affected by a SQL Injection vulnerability that... Moderate Unreviewed
CVE-2021-25109 was published Feb 15, 2022
The Fancy Product Designer WordPress plugin is vulnerable to SQL Injection due to insufficient... Moderate Unreviewed
CVE-2021-4134 was published Feb 17, 2022
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5. Moderate Unreviewed
CVE-2022-0754 was published Mar 8, 2022
SQL Injection in FreeTAKServer-UI Moderate
CVE-2022-25506 was published for FreeTAKServer-UI (pip) Mar 12, 2022
Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries... Moderate Unreviewed
CVE-2022-25223 was published Mar 24, 2022
A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10... Moderate Unreviewed
CVE-2022-0842 was published Mar 24, 2022
CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint ... Moderate Unreviewed
CVE-2021-43701 was published Mar 30, 2022
An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort-by parameter of the search... Moderate Unreviewed
CVE-2022-24956 was published Mar 30, 2022
An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey... Moderate Unreviewed
CVE-2021-40645 was published Mar 31, 2022
An SQL Injection vulnerability exists in oasys oa_system as of 9/7/2021 in resources/mappers... Moderate Unreviewed
CVE-2021-40644 was published Mar 31, 2022
Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability... Moderate Unreviewed
CVE-2022-24231 was published Apr 6, 2022
Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities... Moderate Unreviewed
CVE-2022-27991 was published Apr 9, 2022
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php... Moderate Unreviewed
CVE-2022-27127 was published Apr 11, 2022
Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 5.6 and 6.5 allow remote... Moderate Unreviewed
CVE-2003-1340 was published Apr 29, 2022
SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute... Moderate Unreviewed
CVE-2003-1520 was published Apr 29, 2022
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS... Moderate Unreviewed
CVE-2004-1339 was published Apr 29, 2022
SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier,... Moderate Unreviewed
CVE-2004-2751 was published Apr 29, 2022
SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify... Moderate Unreviewed
CVE-2005-3046 was published May 1, 2022
SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when... Moderate Unreviewed
CVE-2005-3543 was published May 1, 2022
SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows... Moderate Unreviewed
CVE-2005-3996 was published May 1, 2022
** DISPUTED ** SQL injection vulnerability in server_privileges.php in phpMyAdmin 2.7.0 allows... Moderate Unreviewed
CVE-2005-4349 was published May 1, 2022
SQL injection vulnerability in Neocrome Land Down Under (LDU) 801 allows remote attackers to... Moderate Unreviewed
CVE-2005-4711 was published May 1, 2022
Multiple SQL injection vulnerabilities in Wordcircle 2.17 allow remote attackers to (1) execute... Moderate Unreviewed
CVE-2006-0205 was published May 1, 2022
Unspecified vulnerability in the Streams Capture component of Oracle Database server 10.1.0.5 and... Moderate Unreviewed
CVE-2006-0269 was published May 1, 2022
SQL injection vulnerability in @1 File Store 2006.03.07 allows remote attackers to execute... Moderate Unreviewed
CVE-2006-1278 was published May 1, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database