Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,333
Erlang
31
GitHub Actions
22
Go
2,095
Maven
5,000+
npm
3,760
NuGet
678
pip
3,446
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+

13,130 advisories

Loading
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/classes... Critical Unreviewed
CVE-2022-30413 was published May 14, 2022
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via ctpms/admin/?page... High Unreviewed
CVE-2022-30417 was published May 14, 2022
Pharmacy Sales And Inventory System v1.0 is vulnerable to SQL Injection via /pharmacy-sales-and... Critical Unreviewed
CVE-2022-30407 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/?p=view_product... High Unreviewed
CVE-2022-30401 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30399 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/orders... High Unreviewed
CVE-2022-30400 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/?p=products&c=. High Unreviewed
CVE-2022-30403 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30395 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30393 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30396 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30398 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page... High Unreviewed
CVE-2022-30402 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30386 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30391 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30384 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30392 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30385 was published May 14, 2022
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master... Critical Unreviewed
CVE-2022-30387 was published May 14, 2022
A SQL Injection issue was discovered in Sentrifugo 3.2 via the deptid parameter. Critical Unreviewed
CVE-2018-15873 was published May 13, 2022
SQL Injection exists in the ccNewsletter 2.x component for Joomla! via the id parameter in a task... Critical Unreviewed
CVE-2018-5989 was published May 13, 2022
SQL injection vulnerability in archivebot.py in docmarionum1 Slack ArchiveBot (aka slack-archive... Critical Unreviewed
CVE-2018-17232 was published May 13, 2022
Authentication bypass vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x... Critical Unreviewed
CVE-2018-8733 was published May 13, 2022
An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages... Moderate Unreviewed
CVE-2018-17092 was published May 13, 2022
Vulnerability in the Oracle Scripting component of Oracle E-Business Suite (subcomponent:... Critical Unreviewed
CVE-2017-3549 was published May 13, 2022
An authentication bypass exists in the E-Sic 1.0 /index (aka login) URI via '=''or' values for... Critical Unreviewed
CVE-2017-15379 was published May 13, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database