Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,930
Maven
5,000+
npm
4,587
NuGet
786
pip
4,294
Pub
12
RubyGems
981
Rust
1,114
Swift
49
Unreviewed advisories
All unreviewed
5,000+

16,133 advisories

Loading
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/emailingRequest.php... Moderate Unreviewed
CVE-2019-11625 was published May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user... Moderate Unreviewed
CVE-2019-11621 was published May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user... Moderate Unreviewed
CVE-2019-11620 was published May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user... Moderate Unreviewed
CVE-2019-11622 was published May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user... Moderate Unreviewed
CVE-2019-11623 was published May 24, 2022
doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/views/ajax/contactView.php. A... Moderate Unreviewed
CVE-2019-11613 was published May 24, 2022
An issue was discovered in the Armor module in Polaris FT Intellect Core Banking 9.7.1. Input... High Unreviewed
CVE-2018-14874 was published May 24, 2022
An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'],... High Unreviewed
CVE-2019-11567 was published May 24, 2022
SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated... Critical Unreviewed
CVE-2018-18286 was published May 24, 2022
SQL injection vulnerabilities in CMG Suite 8.4 SP2 and earlier, could allow an unauthenticated... Critical Unreviewed
CVE-2018-18285 was published May 24, 2022
Contao SQL injection in the backend and listing module Critical
CVE-2017-16558 was published for contao/contao (Composer) May 24, 2022
TODOtest High Unreviewed
CVE-2019-11518 was published May 24, 2022
whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection. High Unreviewed
CVE-2019-11452 was published May 24, 2022
whatsns 4.0 allows index.php?inform/add.html qid SQL injection. High Unreviewed
CVE-2019-11451 was published May 24, 2022
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection. Critical Unreviewed
CVE-2019-11450 was published May 24, 2022
An issue was discovered in Zoho ManageEngine Applications Manager 11.0 through 14.0. An... Critical Unreviewed
CVE-2019-11448 was published May 24, 2022
app/controllers/frontend/PostController.php in ROCBOSS V2.2.1 has SQL injection via the Post... Critical Unreviewed
CVE-2019-11362 was published May 24, 2022
The Nirweb support WordPress plugin before 2.8.2 does not sanitise and escape a parameter before... Critical Unreviewed
CVE-2022-0781 was published May 24, 2022
The WP Contacts Manager WordPress plugin through 2.2.4 fails to properly sanitize user supplied... Critical Unreviewed
CVE-2022-1014 was published May 24, 2022
Inout Blockchain AltExchanger 1.2.1 allows index.php/coins/update_marketboxslider marketcurrency... High Unreviewed
CVE-2022-31488 was published May 24, 2022
Inout Blockchain AltExchanger 1.2.1 and Inout Blockchain FiatExchanger 2.2.1 allow Chart... High Unreviewed
CVE-2022-31487 was published May 24, 2022
Inout Blockchain AltExchanger 1.2.1 allows index.php/home/about inoutio_language cookie SQL... High Unreviewed
CVE-2022-31489 was published May 24, 2022
ChatBot Application with a Suggestion Feature 1.0 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2022-30518 was published May 21, 2022
School Dormitory Management System v1.0 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2022-30886 was published May 21, 2022
Online Sports Complex Booking System v1.0 was discovered to contain a blind SQL injection... Critical Unreviewed
CVE-2022-28105 was published May 21, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database