GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
21 advisories
Filter by severity
Moodle vulnerable to site administration SQL injection via XMLDB editor
Moderate
CVE-2024-43436
was published
for
moodle/moodle
(Composer)
Nov 7, 2024
Mautic SQL Injection in dynamic Reports
Moderate
CVE-2022-25775
was published
for
mautic/core
(Composer)
Apr 12, 2024
SQL Injection vulnerability in Reportico Till
Moderate
CVE-2023-47438
was published
for
reportico-web/reportico
(Composer)
Mar 28, 2024
EGroupware mishandles an ORDER BY clause
Moderate
CVE-2024-40614
was published
for
egroupware/egroupware
(Composer)
Jul 7, 2024
SQL Injection in TYPO3 Frontend Login
Moderate
GHSA-j86x-pjmr-9m6w
was published
for
typo3/cms
(Composer)
Jun 5, 2024
Magento Injection vulnerability via email templates
Moderate
CVE-2019-8143
was published
for
magento/community-edition
(Composer)
May 24, 2022
LibreNMS SQL Injection vulnerability
Moderate
CVE-2020-15873
was published
for
librenms/librenms
(Composer)
May 24, 2022
phpMyAdmin SQL injection vulnerability
Moderate
CVE-2020-10803
was published
for
phpmyadmin/phpmyadmin
(Composer)
May 24, 2022
Moodle vulnerable to SQL Injection
Moderate
CVE-2023-35132
was published
for
moodle/moodle
(Composer)
Jun 22, 2023
Typo3 Backend History Module Vulnerable to SQL Injection
Moderate
CVE-2012-6144
was published
for
typo3/cms
(Composer)
May 17, 2022
Gila CMS SQL Injection
Moderate
CVE-2020-26623
was published
for
gilacms/gila
(Composer)
Jan 3, 2024
PrestaShop boolean SQL injection
Moderate
CVE-2023-39524
was published
for
prestashop/prestashop
(Composer)
Aug 9, 2023
SQL Injection in moodle
Moderate
CVE-2020-25700
was published
for
moodle/moodle
(Composer)
Mar 29, 2021
OpenCart SQL injection vulnerability
Moderate
CVE-2021-37823
was published
for
opencart/opencart
(Composer)
Nov 3, 2022
CiviCRM SQL injection vulnerability via Quick Search API
Moderate
CVE-2013-4662
was published
for
civicrm/civicrm-core
(Composer)
May 17, 2022
Pimcore SQLi Vulnerability
Moderate
CVE-2018-14058
was published
for
pimcore/pimcore
(Composer)
May 14, 2022
Pimcore vulnerable to improper quoting of filters in Custom Reports
Moderate
CVE-2023-28438
was published
for
pimcore/pimcore
(Composer)
Mar 22, 2023
Pimcore Remote Code Execution vulnerability in Search function
Moderate
CVE-2023-1578
was published
for
pimcore/pimcore
(Composer)
Mar 22, 2023
SQL Injection in showdoc
Moderate
CVE-2022-0362
was published
for
showdoc/showdoc
(Composer)
Jan 27, 2022
SQL Injection in tribalsystems/zenario
Moderate
CVE-2021-27672
was published
for
tribalsystems/zenario
(Composer)
Jun 8, 2021
Data leakage via SQL Injection in Pimcore
Moderate
CVE-2019-10763
was published
for
pimcore/pimcore
(Composer)
Dec 2, 2019
ProTip!
Advisories are also available from the
GraphQL API