GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,497
Composer 4,963
Erlang 39
GitHub Actions 38
Go 2,615
Maven 6,096
npm 4,255
NuGet 760
pip 4,036
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,657

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,441 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed

CVE-2025-49378 was published Oct 22, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-49915 was published Oct 22, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed

CVE-2025-48091 was published Oct 22, 2025

The Email Tracker – Email Log, Email Open Tracking, Email Analytics & Email Management for... Moderate Unreviewed

CVE-2025-10047 was published Oct 22, 2025

daicuocms V1.3.13 contains a SQL injection vulnerability in the file library\think\db\Builder.php. Moderate Unreviewed

CVE-2025-61194 was published Oct 21, 2025

Log2Space Subscriber Management Software 1.1 is vulnerable to unauthenticated SQL injection via... Moderate Unreviewed

CVE-2025-56450 was published Oct 21, 2025

SQL injection vulnerability in the fields of warehouse document filtering form in SIMPLE.ERP... High Unreviewed

CVE-2025-9339 was published Oct 21, 2025

Zohocorp ManageEngine Analytics Plus versions 6171 and prior are vulnerable to authenticated SQL... High Unreviewed

CVE-2025-9428 was published Oct 21, 2025

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may... Moderate Unreviewed

CVE-2025-26392 was published Oct 21, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-62658 was published Oct 20, 2025

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via... Moderate Unreviewed

CVE-2025-60783 was published Oct 20, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47902 was published Oct 20, 2025

SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the... Critical Unreviewed

CVE-2025-61455 was published Oct 20, 2025

A SQL Injection vulnerability has been found in Epsilon RH by Grupo Castilla. This vulnerability... Critical Unreviewed

CVE-2025-41028 was published Oct 20, 2025

A vulnerability was determined in givanz Vvveb up to 1.0.7.3. This affects the function Import of... Moderate Unreviewed

CVE-2025-11944 was published Oct 19, 2025

The GSpeech TTS – WordPress Text To Speech Plugin plugin for WordPress is vulnerable to SQL... Moderate Unreviewed

CVE-2025-10187 was published Oct 18, 2025

The PPOM – Product Addons & Custom Fields for WooCommerce plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-11691 was published Oct 18, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Low Unreviewed

CVE-2025-62655 was published Oct 18, 2025

MCMS vulnerable SQL injection via the content_title parameter Critical

CVE-2025-56316 was published for net.mingsoft:ms-mcms (Maven) Oct 17, 2025

A security vulnerability has been detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40.... Moderate Unreviewed

CVE-2025-11910 was published Oct 17, 2025

A flaw has been found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected is the... Moderate Unreviewed

CVE-2025-11912 was published Oct 17, 2025

A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts... Moderate Unreviewed

CVE-2025-11911 was published Oct 17, 2025

A weakness has been identified in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The... Moderate Unreviewed

CVE-2025-11909 was published Oct 17, 2025

Tillywork v0.1.3 and below is vulnerable to SQL Injection in app/common/helpers/query.builder... Moderate Unreviewed

CVE-2025-60514 was published Oct 17, 2025

A vulnerability was detected in yanyutao0402 ChanCMS up to 3.3.2. Affected by this vulnerability... Moderate Unreviewed

CVE-2025-11902 was published Oct 17, 2025

Previous 1…3…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,441 advisories