GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,687
Composer 5,022
Erlang 39
GitHub Actions 38
Go 2,656
Maven 6,114
npm 4,284
NuGet 760
pip 4,069
Pub 12
RubyGems 957
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,593

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,933 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Community Events plugin for WordPress is vulnerable to SQL Injection via the 'dayofyear'... High Unreviewed

CVE-2025-12646 was published Nov 19, 2025

An improper neutralization of special elements used in an SQL Command ("SQL Injection")... High Unreviewed

CVE-2025-58692 was published Nov 18, 2025

SQL injection vulnerability in WinPlus v24.11.27 by Informática del Este. This vulnerability... High Unreviewed

CVE-2025-41348 was published Nov 18, 2025

The Premmerce Wholesale Pricing for WooCommerce plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2025-12411 was published Nov 18, 2025

An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a... High Unreviewed

CVE-2019-9053 was published May 14, 2022

The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-12482 was published Nov 16, 2025

The Kiwire Captive Portal contains a blind SQL injection in the nas-id parameter, allowing for... High Unreviewed

CVE-2025-11188 was published Oct 10, 2025

ZenTao Biz < 6.5, ZenTao Max < 3.0, ZenTao Open Source Edition < 16.5, and ZenTao Open Source... High Unreviewed

CVE-2022-4984 was published Nov 13, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-64366 was published Oct 31, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-62015 was published Oct 22, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-28953 was published Nov 6, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-60239 was published Nov 6, 2025

The patient prescription viewing functionality in his_doc_view_single_patient.php of rickxy... High Unreviewed

CVE-2025-63497 was published Nov 10, 2025

SQL injection in Revive Adserver 6.0.0 causes potential disruption or information access when... High Unreviewed

CVE-2025-52664 was published Oct 31, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-64293 was published Nov 12, 2025

Bacteriology Laboratory Reporting System developed by ViewLead Technology has a SQL Injection... High Unreviewed

CVE-2025-13047 was published Nov 12, 2025

Bacteriology Laboratory Reporting System developed by ViewLead Technology has a SQL Injection... High Unreviewed

CVE-2025-13046 was published Nov 12, 2025

PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full... High Unreviewed

CVE-2020-5510 was published May 24, 2022

Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed

CVE-2025-59499 was published Nov 11, 2025

Projectworlds Visitor Management System in PHP 1.0 allows SQL Injection. The file front.php does... High Unreviewed

CVE-2020-25760 was published May 24, 2022

A SQL injection vulnerability was discovered in Looker Studio that allowed for data exfiltration... High Unreviewed

CVE-2025-12409 was published Nov 10, 2025

A SQL injection vulnerability was found in Looker Studio. A Looker Studio user with report view... High Unreviewed

CVE-2025-12397 was published Nov 10, 2025

U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing... High Unreviewed

CVE-2025-12865 was published Nov 10, 2025

U-Office Force developed by e-Excellence has a SQL Injection vulnerability, allowing... High Unreviewed

CVE-2025-12864 was published Nov 10, 2025

The Asgaros Forum plugin for WordPress is vulnerable to SQL Injection via the '$_COOKIE[... High Unreviewed

CVE-2025-11452 was published Nov 8, 2025

Previous1…278 Next

Previous 1 2 3 4 5 … 277 278 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,933 advisories