Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,263
Erlang
31
GitHub Actions
21
Go
2,033
Maven
5,000+
npm
3,732
NuGet
662
pip
3,411
Pub
12
RubyGems
891
Rust
865
Swift
36
Unreviewed advisories
All unreviewed
5,000+

199 advisories

Loading
Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection... High Unreviewed
CVE-2022-44830 was published Nov 21, 2022
The Easy Digital Downloads WordPress plugin before 3.1.0.2 does not validate data when its output... Critical Unreviewed
CVE-2022-3600 was published Nov 21, 2022
The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when... Critical Unreviewed
CVE-2022-3634 was published Nov 21, 2022
CA Harvest Software Change Manager versions 13.0.3, 13.0.4, 14.0.0, and 14.0.1, contain a... High Unreviewed
CVE-2022-22689 was published Feb 11, 2022
IBM Guardium Data Encryption (GDE) 4.0.0.0 and 5.0.0.0 saves user-provided information into a... High Unreviewed
CVE-2021-39022 was published Mar 11, 2022
IBM Maximo Asset Management 7.6 is vulnerable to CSV injection, which could allow a remote... High Unreviewed
CVE-2019-4364 was published May 24, 2022
An issue was discovered in Joomla! before 3.9.7. The CSV export of com_actionslogs is vulnerable... Critical Unreviewed
CVE-2019-12765 was published May 24, 2022
CSV injection in the event-tickets (Event Tickets) plugin before 4.10.7.2 for WordPress exists... Moderate Unreviewed
CVE-2019-16120 was published May 24, 2022
The Hustle (aka wordpress-popup) plugin 6.0.7 for WordPress is vulnerable to CSV Injection as it... High Unreviewed
CVE-2019-11872 was published May 24, 2022
A improper neutralization of formula elements in a CSV file vulnerability in Fortinet... High Unreviewed
CVE-2023-25611 was published Mar 7, 2023
CSV-Safe improperly filters special characters potentially leading to CSV injection Critical
CVE-2022-28481 was published for csv-safe (RubyGems) May 3, 2022
CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress. Critical Unreviewed
CVE-2022-27858 was published Nov 9, 2022
phpMyFAQ Improper Neutralization of Formula Elements in a CSV File vulnerability High
CVE-2023-4006 was published for thorsten/phpmyfaq (Composer) Jul 31, 2023
Embedding untrusted input inside CSV files leads to Formula Injection/CSV Injection High
CVE-2023-2629 was published for pimcore/customer-management-framework-bundle (Composer) May 11, 2023
sampritdas8
RosarioSIS vulnerable to CSV Injection Moderate
CVE-2023-29918 was published for francoisjacquet/rosariosis (Composer) May 2, 2023
Improper Neutralization of Formula Elements in a CSV File in GitHub repository alfio-event/alf.io... High Unreviewed
CVE-2023-2258 was published Apr 24, 2023
Improper Neutralization of Formula Elements in a CSV File in GitHub repository fossbilling... High Unreviewed
CVE-2023-3493 was published Jul 1, 2023
Admidio Improper Neutralization of Formula Elements in a CSV File vulnerability High
CVE-2023-3302 was published for admidio/admidio (Composer) Jun 23, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in Lenderd 1003 Mortgage... Critical Unreviewed
CVE-2022-45357 was published Nov 13, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in WebToffee Product... Critical Unreviewed
CVE-2022-46802 was published Nov 13, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in WPDeveloper ReviewX –... Critical Unreviewed
CVE-2022-46809 was published Nov 7, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in Noptin Newsletter... Critical Unreviewed
CVE-2022-46803 was published Nov 7, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in wpWax Directorist –... High Unreviewed
CVE-2023-41798 was published Nov 7, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in Pär Thernström Simple... High Unreviewed
CVE-2022-45350 was published Nov 15, 2023
Improper Neutralization of Formula Elements in a CSV File vulnerability in AyeCode Ltd UsersWP... High Unreviewed
CVE-2022-47442 was published Nov 15, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database