Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,726
Maven
5,000+
npm
4,331
NuGet
763
pip
4,107
Pub
12
RubyGems
960
Rust
1,068
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,215 advisories

Loading
SQL injection vulnerability in the host_new_graphs_save function in graphs_new.php in Cacti 0.8... Moderate Unreviewed
CVE-2015-8377 was published May 17, 2022
SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified... Moderate Unreviewed
CVE-2015-0699 was published May 17, 2022
SQL injection vulnerability in Cisco Prime Collaboration Provisioning 10.6 and 11.0 allows remote... Moderate Unreviewed
CVE-2015-6329 was published May 17, 2022
SQL injection vulnerability in the web interface in Cisco Unity Connection 9.1(1.2) and earlier... Moderate Unreviewed
CVE-2015-6299 was published May 17, 2022
Multiple SQL injection vulnerabilities in Avanset Visual CertExam Manager 3.3 and earlier allow... Moderate Unreviewed
CVE-2013-7175 was published May 17, 2022
The affected product is vulnerable to multiple SQL injections that require low privileges for... Moderate Unreviewed
CVE-2022-2136 was published Jul 23, 2022
Actian Matrix 5.1.x through 5.1.2.4 and 5.2.x through 5.2.0.1 allows remote authenticated users... Moderate Unreviewed
CVE-2015-3993 was published May 17, 2022
Multiple SQL injection vulnerabilities in IPSwitch WhatsUp Gold before 16.4 allow remote... Moderate Unreviewed
CVE-2015-6004 was published May 17, 2022
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially... Moderate Unreviewed
CVE-2016-8929 was published May 17, 2022
SQL injection vulnerability in application/controllers/admin/questiongroups.php in LimeSurvey... Moderate Unreviewed
CVE-2015-4628 was published May 17, 2022
SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary... Moderate Unreviewed
CVE-2015-4713 was published May 17, 2022
SQL injection vulnerability in the Solution Engine in Cisco Secure Access Control Server (ACS) 5... Moderate Unreviewed
CVE-2015-6345 was published May 17, 2022
SQL injection vulnerability in Cisco Unified Communications Manager IM and Presence Service 9.1(1... Moderate Unreviewed
CVE-2015-4222 was published May 17, 2022
SQL injection vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 and earlier allows remote... Moderate Unreviewed
CVE-2016-4507 was published May 17, 2022
SQL injection vulnerability in the web framework in Cisco Prime Collaboration Assurance 10.5(1)... Moderate Unreviewed
CVE-2015-6331 was published May 17, 2022
The affected product is vulnerable to two SQL injections that require high privileges for... Moderate Unreviewed
CVE-2022-2137 was published Jul 23, 2022
SQL injection vulnerability in Cisco Unified MeetingPlace 8.6(1.2) allows remote authenticated... Moderate Unreviewed
CVE-2015-4233 was published May 17, 2022
SQL injection vulnerability in zp-core/zp-extensions/wordpress_import.php in Zenphoto before 1.4... Moderate Unreviewed
CVE-2013-7242 was published May 17, 2022
SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and... Moderate Unreviewed
CVE-2017-3899 was published May 17, 2022
The Big SQL component in IBM InfoSphere BigInsights 3.0 through 3.0.0.2 allows remote... Moderate Unreviewed
CVE-2015-1889 was published May 17, 2022
IBM Kenexa LMS on Cloud is vulnerable to SQL injection. A remote attacker could send specially... Moderate Unreviewed
CVE-2016-5939 was published May 17, 2022
SAP Busines Objects Business Intelligence Platform (Visual Difference Application) - versions 420... Moderate Unreviewed
CVE-2022-32246 was published Jul 13, 2022
The affected product is vulnerable to a SQL injection with high attack complexity, which may... Moderate Unreviewed
CVE-2022-2142 was published Jul 23, 2022
The application Piwigo is affected by a SQL injection vulnerability in version 2.9.0 and possibly... Moderate Unreviewed
CVE-2017-9463 was published May 17, 2022
Command Centre Server is vulnerable to SQL Injection via Windows Registry settings for date... Moderate Unreviewed
CVE-2022-26348 was published Jul 7, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database