GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
2,561 advisories
Filter by severity
CA Network Flow Analysis (NFA) 21.2.1 and earlier contain a SQL injection vulnerability in the...
Moderate
Unreviewed
CVE-2021-44050
was published
Dec 3, 2021
An authenticated SQL injection issue in the calendar search function of OpenEMR 6.0.0 before...
Moderate
Unreviewed
CVE-2021-41843
was published
Dec 18, 2021
A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated...
Moderate
Unreviewed
CVE-2021-21926
was published
Dec 23, 2021
The All in One SEO WordPress plugin before 4.1.5.3 is affected by an authenticated SQL injection...
Moderate
Unreviewed
CVE-2021-25037
was published
Jan 18, 2022
The Rearrange Woocommerce Products WordPress plugin before 3.0.8 does not have proper access...
Moderate
Unreviewed
CVE-2021-24928
was published
Feb 8, 2022
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which...
Moderate
Unreviewed
CVE-2021-42633
was published
Feb 8, 2022
The Futurio Extra WordPress plugin before 1.6.3 is affected by a SQL Injection vulnerability that...
Moderate
Unreviewed
CVE-2021-25109
was published
Feb 15, 2022
The Fancy Product Designer WordPress plugin is vulnerable to SQL Injection due to insufficient...
Moderate
Unreviewed
CVE-2021-4134
was published
Feb 17, 2022
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5.
Moderate
Unreviewed
CVE-2022-0754
was published
Mar 8, 2022
Money Transfer Management System Version 1.0 allows an authenticated user to inject SQL queries...
Moderate
Unreviewed
CVE-2022-25223
was published
Mar 24, 2022
A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10...
Moderate
Unreviewed
CVE-2022-0842
was published
Mar 24, 2022
CSZ CMS 1.2.9 has a Time and Boolean-based Blind SQL Injection vulnerability in the endpoint ...
Moderate
Unreviewed
CVE-2021-43701
was published
Mar 30, 2022
An issue was discovered in Shopware B2B-Suite through 4.4.1. The sort-by parameter of the search...
Moderate
Unreviewed
CVE-2022-24956
was published
Mar 30, 2022
An SQL Injection vulnerability exists in oasys oa_system as of 9/7/2021 in resources/mappers...
Moderate
Unreviewed
CVE-2021-40644
was published
Mar 31, 2022
An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey...
Moderate
Unreviewed
CVE-2021-40645
was published
Mar 31, 2022
Simple Student Information System v1.0 was discovered to contain a SQL injection vulnerability...
Moderate
Unreviewed
CVE-2022-24231
was published
Apr 6, 2022
Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities...
Moderate
Unreviewed
CVE-2022-27991
was published
Apr 9, 2022
zbzcms v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php...
Moderate
Unreviewed
CVE-2022-27127
was published
Apr 11, 2022
Multiple SQL injection vulnerabilities in Francisco Burzi PHP-Nuke 5.6 and 6.5 allow remote...
Moderate
Unreviewed
CVE-2003-1340
was published
Apr 29, 2022
SQL injection vulnerability in FuzzyMonkey My Classifieds 2.11 allows remote attackers to execute...
Moderate
Unreviewed
CVE-2003-1520
was published
Apr 29, 2022
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS...
Moderate
Unreviewed
CVE-2004-1339
was published
Apr 29, 2022
SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier,...
Moderate
Unreviewed
CVE-2004-2751
was published
Apr 29, 2022
SQL injection vulnerability in password.php in PhpMyFaq 1.5.1 allows remote attackers to modify...
Moderate
Unreviewed
CVE-2005-3046
was published
May 1, 2022
SQL injection vulnerability in search.php in Phorum 5.0.0alpha through 5.0.20, when...
Moderate
Unreviewed
CVE-2005-3543
was published
May 1, 2022
SQL injection vulnerability in admin/password_forgotten.php in Zen Cart 1.2.6d and earlier allows...
Moderate
Unreviewed
CVE-2005-3996
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API