GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,185
Composer 4,891
Erlang 37
GitHub Actions 38
Go 2,550
Maven 6,017
npm 4,221
NuGet 745
pip 3,998
Pub 12
RubyGems 953
Rust 1,039
Swift 45

Unreviewed advisories

All unreviewed 273,071

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,266 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Custom 404 Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ‘path’... Moderate Unreviewed

CVE-2025-9947 was published Oct 11, 2025

The WP Links Page plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in... Moderate Unreviewed

CVE-2025-10175 was published Oct 11, 2025

The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to SQL... Moderate Unreviewed

CVE-2025-10185 was published Oct 11, 2025

The My auctions allegro plugin for WordPress is vulnerable to SQL Injection via the 'order'... Moderate Unreviewed

CVE-2025-10048 was published Oct 11, 2025

JEEWMS 20250820 is vulnerable to SQL Injection in the exportXls function located in the src/main... Critical Unreviewed

CVE-2025-60269 was published Oct 10, 2025

SourceCodester Pet Grooming Management Software 1.0 is vulnerable to SQL Injection in admin... Critical Unreviewed

CVE-2025-60316 was published Oct 9, 2025

In xckk v9.6, there is a SQL injection vulnerability in which the cond parameter in notice/list... Moderate Unreviewed

CVE-2025-60267 was published Oct 9, 2025

In xckk v9.6, there is a SQL injection vulnerability in which the orderBy parameter in address... Moderate Unreviewed

CVE-2025-60266 was published Oct 9, 2025

In xckk v9.6, there is a SQL injection vulnerability in which the orderBy parameter in user/list... Moderate Unreviewed

CVE-2025-60265 was published Oct 9, 2025

Apache Flink CDC is vulnerable to SQL Injection through maliciously crafted identifiers Moderate

CVE-2025-62228 was published for org.apache.flink:flink-cdc-pipeline-connectors (Maven) Oct 9, 2025

The Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce... High Unreviewed

CVE-2025-10862 was published Oct 9, 2025

A weakness has been identified in code-projects Online Complaint Site 1.0. Affected is an unknown... Moderate Unreviewed

CVE-2025-11530 was published Oct 9, 2025

The Community Events plugin for WordPress is vulnerable to SQL Injection via the ‘event_venue’... Critical Unreviewed

CVE-2025-10586 was published Oct 9, 2025

A vulnerability was identified in code-projects Online Complaint Site 1.0. This vulnerability... Moderate Unreviewed

CVE-2025-11514 was published Oct 9, 2025

A security flaw has been discovered in code-projects Online Complaint Site 1.0. This issue... Moderate Unreviewed

CVE-2025-11515 was published Oct 9, 2025

A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of... Moderate Unreviewed

CVE-2025-11511 was published Oct 9, 2025

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown... Moderate Unreviewed

CVE-2025-11513 was published Oct 9, 2025

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown... Moderate Unreviewed

CVE-2025-11509 was published Oct 9, 2025

A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. Impacted is an... Moderate Unreviewed

CVE-2025-11505 was published Oct 9, 2025

ProjectWorlds Gym Management System1.0 is vulnerable to SQL Injection via the "id" parameter in... High Unreviewed

CVE-2025-60311 was published Oct 8, 2025

A vulnerability was determined in PHPGurukul Beauty Parlour Management System 1.1. This issue... Moderate Unreviewed

CVE-2025-11503 was published Oct 8, 2025

A flaw has been found in varunsardana004 Blood-Bank-And-Donation-Management-System up to... Moderate Unreviewed

CVE-2025-11481 was published Oct 8, 2025

A vulnerability was identified in SourceCodester Farm Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-11486 was published Oct 8, 2025

A security vulnerability has been detected in SourceCodester Wedding Reservation Management... Moderate Unreviewed

CVE-2025-11479 was published Oct 8, 2025

A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected... Moderate Unreviewed

CVE-2025-11480 was published Oct 8, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,266 advisories