GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
2,261 advisories
Filter by severity
SQL injection vulnerability in showflat.php in UBB.threads 5.5.1, 6.0 br5, 6.0.1, 6.0.2, and...
Moderate
Unreviewed
CVE-2006-1423
was published
May 1, 2022
SQL injection vulnerability in the display function in the Topics module for MAXdev MDPro (MD-Pro...
Moderate
Unreviewed
CVE-2006-1676
was published
May 1, 2022
SQL injection vulnerability in Oracle Database Server 9.2.0.7 and 10.1.0.5 allows remote...
Moderate
Unreviewed
CVE-2006-1871
was published
May 1, 2022
SQL injection vulnerability in class2.php in e107 0.7.2 and earlier allows remote attackers to...
Moderate
Unreviewed
CVE-2006-2416
was published
May 1, 2022
SQL injection vulnerability in register.php for phpRaid 3.0.6 and possibly other versions, when...
Moderate
Unreviewed
CVE-2006-3318
was published
May 1, 2022
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and ...
Moderate
Unreviewed
CVE-2006-3823
was published
May 1, 2022
SQL injection vulnerability in manager/index.php in Etomite CMS 0.6.1 and earlier, with...
Moderate
Unreviewed
CVE-2006-3904
was published
May 1, 2022
SQL injection vulnerability in Sources/ManageBoards.php in Simple Machines Forum 1.1 RC3 allows...
Moderate
Unreviewed
CVE-2006-4564
was published
May 1, 2022
Multiple SQL injection vulnerabilities in All In One Control Panel (AIOCP) 1.3.007 and earlier...
Moderate
Unreviewed
CVE-2006-5829
was published
May 1, 2022
SQL injection vulnerability in index.php in Etomite CMS 0.6.1.2, when magic_quotes_gpc is...
Moderate
Unreviewed
CVE-2006-6048
was published
May 1, 2022
SQL injection vulnerability in Soumu Workflow for Groupmax 01-00 through 01-01, Soumu Workflow 02...
Moderate
Unreviewed
CVE-2006-6706
was published
May 1, 2022
SQL injection vulnerability in wwv_flow_utilities.gen_popup_list in the WWV_FLOW_UTILITIES...
Moderate
Unreviewed
CVE-2006-7138
was published
May 1, 2022
Apache Derby SQL Injection
Moderate
CVE-2006-7217
was published
for
org.apache.derby:derby
(Maven)
May 1, 2022
SQL injection vulnerability in the is_remembered function in class.login.php in Website Baker 2.6...
Moderate
Unreviewed
CVE-2007-0527
was published
May 1, 2022
SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary...
Moderate
Unreviewed
CVE-2007-0789
was published
May 1, 2022
SQL injection vulnerability in webSPELL allows remote attackers to execute arbitrary SQL commands...
Moderate
Unreviewed
CVE-2007-1154
was published
May 1, 2022
SQL injection vulnerability in guestbook.php in LI-Guestbook 1.1, when magic_quotes_gpc is...
Moderate
Unreviewed
CVE-2007-1302
was published
May 1, 2022
SQL injection vulnerability in admincp/attachment.php in Jelsoft vBulletin 3.6.5 allows remote...
Moderate
Unreviewed
CVE-2007-1573
was published
May 1, 2022
SQL injection vulnerability in index.php in the DesignForJoomla.com D4J eZine (com_ezine) 2.8 and...
Moderate
Unreviewed
CVE-2007-1776
was published
May 1, 2022
SQL injection vulnerability in xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier,...
Moderate
Unreviewed
CVE-2007-1897
was published
May 1, 2022
Multiple SQL injection vulnerabilities in myWebland myBloggie 2.1.6 allow remote attackers to...
Moderate
Unreviewed
CVE-2007-1899
was published
May 1, 2022
SQL injection vulnerability in the SYS.DBMS_AQADM_SYS package in Oracle Database 9.0.1.5, 9.2.0.7...
Moderate
Unreviewed
CVE-2007-2111
was published
May 1, 2022
SQL injection vulnerability in BugMall Shopping Cart 2.5 and earlier allows remote attackers to...
Moderate
Unreviewed
CVE-2007-3447
was published
May 1, 2022
SQL injection vulnerability in class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows...
Moderate
Unreviewed
CVE-2007-3652
was published
May 1, 2022
SQL injection vulnerability in inferno.php in the Inferno Technologies RPG Inferno 2.4 and...
Moderate
Unreviewed
CVE-2007-3687
was published
May 1, 2022
ProTip!
Advisories are also available from the
GraphQL API