Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+

3,671 advisories

Loading
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple... Critical Unreviewed
CVE-2021-43629 was published Dec 23, 2021
Projectworlds Hospital Management System v1.0 is vulnerable to SQL injection via the email... Critical Unreviewed
CVE-2021-43628 was published Dec 23, 2021
Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter... Critical Unreviewed
CVE-2021-43157 was published Dec 23, 2021
Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the "bookisbn"... Critical Unreviewed
CVE-2021-43155 was published Dec 23, 2021
Nettmp NNT 5.1 is affected by a SQL injection vulnerability. An attacker can bypass... Critical Unreviewed
CVE-2021-45814 was published Dec 29, 2021
Emuse - eServices / eNvoice SQL injection can be used in various ways ranging from bypassing... Critical Unreviewed
CVE-2021-36722 was published Dec 30, 2021
The "WP Search Filters" widget of The Plus Addons for Elementor - Pro WordPress plugin before 5.0... Critical Unreviewed
CVE-2021-24949 was published Jan 11, 2022
Sourcecodester Online Thesis Archiving System 1.0 is vulnerable to SQL Injection. An attacker can... Critical Unreviewed
CVE-2021-45334 was published Jan 11, 2022
cscms v4.1 allows for SQL injection via the "js_del" function. Critical Unreviewed
CVE-2020-28102 was published Jan 12, 2022
cscms v4.1 allows for SQL injection via the "page_del" function. Critical Unreviewed
CVE-2020-28103 was published Jan 12, 2022
The Le-yan dental management system contains an SQL-injection vulnerability. An unauthenticated... Critical Unreviewed
CVE-2022-22055 was published Jan 15, 2022
Taocms v3.0.2 was discovered to contain an arbitrary file read vulnerability via the path... Critical Unreviewed
CVE-2021-46204 was published Jan 20, 2022
An SQL Injection vulnerability exists in Sourcecodester Computer and Mobile Repair Shop... Critical Unreviewed
CVE-2021-46061 was published Jan 21, 2022
An SQL Injection vulnerability exists in Courcecodester COVID 19 Testing Management System (CTMS)... Critical Unreviewed
CVE-2021-44245 was published Jan 21, 2022
An SQL Injection vulnerability exists in code-projects Pharmacy Management 1.0 via the username... Critical Unreviewed
CVE-2021-44092 was published Jan 21, 2022
An SQL Injection vulnerabiity exists in Sourcecodester Logistic Hub Parcel's Management System 1... Critical Unreviewed
CVE-2021-44244 was published Jan 21, 2022
An SQL Injection vulnerability exists in Sourcecodester Online Reviewer System 1.0 via the... Critical Unreviewed
CVE-2021-44090 was published Jan 21, 2022
SQL Injection in Log4j 1.2.x Critical
CVE-2022-23305 was published for log4j:log4j (Maven) Jan 21, 2022
SebGondron
SQL injection vulnerability in Sourcecodester Online Leave Management System v1 by oretnom23,... Critical Unreviewed
CVE-2021-40595 was published Jan 22, 2022
SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23,... Critical Unreviewed
CVE-2021-40247 was published Jan 22, 2022
An SQL Injection vulnerability exists in Sourcecodester Online Railway Reservation Sysytem 1.0... Critical Unreviewed
CVE-2021-46308 was published Jan 22, 2022
An SQL Injection vulnerability exists in Sourcecodester Employee and Visitor Gate Pass Logging... Critical Unreviewed
CVE-2021-46309 was published Jan 22, 2022
An SQL Injection vulnerability exists in Sourcecodester Online Resort Management System 1.0 via... Critical Unreviewed
CVE-2021-46201 was published Jan 22, 2022
An SQL Injection vulnerability exists in Projectworlds Online Examination System 1.0 via the eid... Critical Unreviewed
CVE-2021-46307 was published Jan 22, 2022
An SQL Injection vulnerability exists in Sourcecodester Simple Music Clour Community System 1.0... Critical Unreviewed
CVE-2021-46200 was published Jan 22, 2022
ProTip! Advisories are also available from the GraphQL API