Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,749
Erlang
35
GitHub Actions
29
Go
2,322
Maven
5,000+
npm
3,955
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

3,407 advisories

Loading
Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1 SP1 before Patch 47... Moderate Unreviewed
CVE-2013-6176 was published May 17, 2022
SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote... Moderate Unreviewed
CVE-2013-6872 was published May 17, 2022
SQL injection vulnerability in the download feature in Cybozu Garoon 2.x through 2.5.4 and 3.x... Moderate Unreviewed
CVE-2014-0821 was published May 17, 2022
SQL injection vulnerability in Sharetronix before 3.4 allows remote authenticated users to... Moderate Unreviewed
CVE-2014-3415 was published May 17, 2022
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager ... Moderate Unreviewed
CVE-2013-5015 was published May 17, 2022
SQL injection vulnerability in TrackItWeb/Grid/GetData in BMC Track-It! 11.3.0.355 allows remote... Moderate Unreviewed
CVE-2014-4873 was published May 17, 2022
SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to... Moderate Unreviewed
CVE-2014-5383 was published May 17, 2022
Multiple SQL injection vulnerabilities in ICZ MATCHA INVOICE before 2.5.7 allow remote... Moderate Unreviewed
CVE-2015-5642 was published May 17, 2022
SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5... Moderate Unreviewed
CVE-2015-4967 was published May 17, 2022
SQL injection vulnerability in the Image Management component in Cisco Unified Communications... Moderate Unreviewed
CVE-2015-0684 was published May 17, 2022
SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400... Moderate Unreviewed
CVE-2015-6486 was published May 17, 2022
SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0... Moderate Unreviewed
CVE-2015-7903 was published May 17, 2022
SQL injection vulnerability in the administrative web interface in Cisco Unified Communications... Moderate Unreviewed
CVE-2015-0715 was published May 17, 2022
Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00... Moderate Unreviewed
CVE-2015-7725 was published May 17, 2022
Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00... Moderate Unreviewed
CVE-2015-7727 was published May 17, 2022
SQL injection vulnerability in the web framework in Cisco Identity Services Engine (ISE) 1.2(.1... Moderate Unreviewed
CVE-2014-3275 was published May 17, 2022
SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x... Moderate Unreviewed
CVE-2015-5659 was published May 17, 2022
SQL injection vulnerability in IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5... Moderate Unreviewed
CVE-2015-1989 was published May 17, 2022
SQL injection vulnerability in list.php in phpRechnung before 1.6.5 allows remote authenticated... Moderate Unreviewed
CVE-2015-5648 was published May 17, 2022
SQL injection vulnerability in the BOKUBLOCK (1) BbAdminViewsControl213 plugin before 1.1 and (2)... Moderate Unreviewed
CVE-2015-7784 was published May 17, 2022
SQL injection vulnerability in IBM Curam Social Program Management 6.1 before 6.1.1 allows remote... Moderate Unreviewed
CVE-2015-5023 was published May 17, 2022
SQL injection vulnerability in Emerson AMS Device Manager before 13 allows remote authenticated... Moderate Unreviewed
CVE-2015-1008 was published May 17, 2022
SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote authenticated... Moderate Unreviewed
CVE-2016-2301 was published May 17, 2022
SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5... Moderate Unreviewed
CVE-2015-7448 was published May 17, 2022
SQL injection vulnerability in BulkViewFileContentsAction.java in the Java interface in Cisco... Moderate Unreviewed
CVE-2014-3287 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database