GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
16 advisories
Filter by severity
Improper Neutralization of Special Elements used in an SQL Command Pivotal Spring Data JPA
Moderate
CVE-2016-6652
was published
for
org.springframework.data:spring-data-jpa
(Maven)
May 17, 2022
Exposure of Sensitive Information to an Unauthorized Actor and SQL Injection in Spring Data JPA
Moderate
CVE-2019-3797
was published
for
org.springframework.data:spring-data-jpa
(Maven)
May 14, 2019
SQL Injection in Kylin
Moderate
CVE-2020-1937
was published
for
org.apache.kylin:kylin-server-base
(Maven)
Jul 27, 2020
SQL Injection in Spring Cloud Task
Moderate
CVE-2020-5428
was published
for
org.springframework.cloud:spring-cloud-task-dependencies
(Maven)
Feb 9, 2022
Jeecg-boot vulnerable to SQL Injection
Moderate
CVE-2022-45210
was published
for
org.jeecgframework.boot:jeecg-boot-common
(Maven)
Nov 25, 2022
Jeecg-boot vulnerable to SQL injection via /sys/user/putRecycleBin
Moderate
CVE-2022-45208
was published
for
org.jeecgframework.boot:jeecg-boot-common
(Maven)
Nov 25, 2022
SQL Injection in Apache Kylin
Moderate
CVE-2021-36774
was published
for
org.apache.kylin:kylin
(Maven)
Jan 8, 2022
Jeecg-boot SQL Injection vulnerability
Moderate
CVE-2023-38905
was published
for
org.jeecgframework.boot:jeecg-boot-parent
(Maven)
Aug 17, 2023
JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode
Moderate
CVE-2023-34602
was published
for
org.jeecgframework.boot:jeecg-boot-parent
(Maven)
Jun 19, 2023
JeecgBoot vulnerable to SQL injection in queryFilterTableDictInfo
Moderate
CVE-2023-34603
was published
for
org.jeecgframework.boot:jeecg-boot-parent
(Maven)
Jun 19, 2023
Apache StreamPark: Authenticated system users could trigger SQL injection vulnerability
Moderate
CVE-2023-30867
was published
for
org.apache.streampark:streampark
(Maven)
Dec 15, 2023
Apache Derby SQL Injection
Moderate
CVE-2006-7217
was published
for
org.apache.derby:derby
(Maven)
May 1, 2022
Blind SQL Injection with privileged Cloud Foundry UAA endpoints
Moderate
CVE-2017-4974
was published
for
org.cloudfoundry.identity:cloudfoundry-identity-server
(Maven)
May 13, 2022
SQL injection in Folio Spring Module Core
Moderate
CVE-2022-4963
was published
for
org.folio:spring-module-core
(Maven)
Mar 21, 2024
SQL Injection in Hibernate ORM
Moderate
CVE-2019-14900
was published
for
org.hibernate:hibernate-core
(Maven)
Feb 10, 2022
Apache InLong SQL Injection vulnerability
Moderate
CVE-2023-30465
was published
for
org.apache.inlong:manager-pojo
(Maven)
Jul 6, 2023
ProTip!
Advisories are also available from the
GraphQL API