GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,777
Composer 4,248
Erlang 31
GitHub Actions 21
Go 2,014
Maven 5,201
npm 3,721
NuGet 662
pip 3,393
Pub 11
RubyGems 890
Rust 852
Swift 36

Unreviewed advisories

All unreviewed 236,123

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

12,762 advisories

Filter by severity

Sort by

Least recently updated

curl and libcurl 7.2x before 7.24.0 do not properly consider special characters during extraction... High Unreviewed

CVE-2012-0036 was published May 4, 2022

In the wp-google-maps plugin before 7.11.18 for WordPress, includes/class.rest-api.php in the... Critical Unreviewed

CVE-2019-10692 was published May 4, 2022

Jfinal_cms 5.1.0 is vulnerable to SQL Injection via com.jflyfox.system.log.LogController.java. High Unreviewed

CVE-2022-28505 was published May 4, 2022

EmpireCMS 7.5 has a SQL injection vulnerability in AdClass.php Critical Unreviewed

CVE-2022-28585 was published May 4, 2022

Bluecms 1.6 has a SQL injection vulnerability at cooike. Critical Unreviewed

CVE-2022-27962 was published May 4, 2022

Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2022-27413 was published May 4, 2022

SQL injection vulnerability in CA Clever Path Portal allows remote authenticated users to execute... Moderate Unreviewed

CVE-2007-2230 was published May 3, 2022

MCMS v5.2.27 was discovered to contain a SQL injection vulnerability in the orderBy parameter at ... Critical Unreviewed

CVE-2022-27466 was published May 3, 2022

The SiteSuperCharger WordPress plugin before 5.2.0 does not validate, sanitise and escape various... Critical Unreviewed

CVE-2022-0771 was published May 3, 2022

The Documentor WordPress plugin through 1.5.3 fails to sanitize and escape user input before it... Critical Unreviewed

CVE-2022-0773 was published May 3, 2022

The Multiple Shipping Address Woocommerce WordPress plugin before 2.0 does not properly sanitise... Critical Unreviewed

CVE-2022-0783 was published May 3, 2022

The Photo Gallery WordPress plugin through 1.6.3 does not properly escape the $_POST['filter_tag'... Critical Unreviewed

CVE-2022-1281 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1366 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1367 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1369 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1370 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1371 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1374 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1372 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1376 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1377 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1378 was published May 3, 2022

Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection... Critical Unreviewed

CVE-2022-1375 was published May 3, 2022

Multiple SQL injection vulnerabilities in WebAsyst Shop-Script FREE allow attackers to execute... High Unreviewed

CVE-2010-1463 was published May 2, 2022

SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote... High Unreviewed

CVE-2010-1431 was published May 2, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,762 advisories