GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,889
Composer 5,066
Erlang 39
GitHub Actions 38
Go 2,701
Maven 6,140
npm 4,328
NuGet 761
pip 4,103
Pub 12
RubyGems 958
Rust 1,064
Swift 45

Unreviewed advisories

All unreviewed 278,852

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,734 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The My auctions allegro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’... High Unreviewed

CVE-2025-12850 was published Dec 5, 2025

Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162)... High Unreviewed

CVE-2025-13373 was published Dec 5, 2025

dawa-pharma-1.0 allows unauthenticated attackers to execute SQL queries on the server, allowing... High Unreviewed

CVE-2023-53734 was published Dec 4, 2025

Obi08/Enrollment System 1.0 contains a SQL injection vulnerability in the keyword parameter of ... High Unreviewed

CVE-2024-58276 was published Dec 4, 2025

A vulnerability was determined in jsnjfz WebStack-Guns 1.0. This vulnerability affects unknown... Moderate Unreviewed

CVE-2025-13811 was published Dec 1, 2025

A vulnerability has been found in Chanjet CRM up to 20251106. The impacted element is an unknown... Moderate Unreviewed

CVE-2025-13788 was published Nov 30, 2025

A vulnerability was detected in ashraf-kabir travel-agency up to... Moderate Unreviewed

CVE-2025-13546 was published Nov 23, 2025

A security vulnerability has been detected in ashraf-kabir travel-agency up to... Moderate Unreviewed

CVE-2025-13545 was published Nov 23, 2025

A vulnerability has been found in Chanjet CRM 1.0 and classified as critical. Affected by this... Moderate Unreviewed

CVE-2025-6132 was published Jun 16, 2025

SQL injection vulnerability in TCMAN GIM v11 in version 20250304. This vulnerability allows an... High Unreviewed

CVE-2025-41013 was published Dec 2, 2025

assyncmy is vulnerable to SQL injection via crafted dict keys Critical

CVE-2025-65896 was published for asyncmy (pip) Dec 2, 2025

PostgreSQL SQL Injection (status_sql.php) in DB Electronica Telecomunicazioni S.p.A. Mozart FM... High Unreviewed

CVE-2025-66260 was published Nov 26, 2025

OpenCode Systems USSD Gateway OC Release: 5 Version 6.13.11 was discovered to contain a SQL... Critical Unreviewed

CVE-2025-65235 was published Nov 26, 2025

A blind SQL Injection (SQLi) vulnerability in mJobtime v15.7.2 allows unauthenticated attackers... Critical Unreviewed

CVE-2025-51683 was published Dec 1, 2025

Edoc-doctor-appointment-system v1.0.1 was discovered to contain SQl injection vulnerability via... Critical Unreviewed

CVE-2025-65358 was published Dec 2, 2025

code-projects Online Medicine Guide 1.0 is vulnerable to SQL Injection in /login.php via the... Critical Unreviewed

CVE-2025-60736 was published Dec 2, 2025

A vulnerability was found in Chanjet CRM 1.0 and classified as critical. Affected by this issue... Moderate Unreviewed

CVE-2025-7915 was published Jul 21, 2025

The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is... Moderate Unreviewed

CVE-2025-13359 was published Dec 3, 2025

Django is vulnerable to SQL injection in column aliases Moderate

CVE-2025-13372 was published for Django (pip) Dec 2, 2025

The FluentCart plugin for WordPress is vulnerable to SQL Injection via the 'groupKey' parameter... Moderate Unreviewed

CVE-2025-13495 was published Dec 3, 2025

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php... Moderate Unreviewed

CVE-2025-65379 was published Dec 2, 2025

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint.... Moderate Unreviewed

CVE-2025-65380 was published Dec 2, 2025

Lvzhou CMS before commit c4ea0eb9cab5f6739b2c87e77d9ef304017ed615 (2025-09-22) is vulnerable to... Moderate Unreviewed

CVE-2025-65877 was published Dec 2, 2025

OpenCode Systems USSD Gateway OC Release: 5 was discovered to contain a SQL injection... Critical Unreviewed

CVE-2025-65236 was published Nov 26, 2025

A Blind SQL injection vulnerability has been identified in QuickCMS. Improper neutralization of... High Unreviewed

CVE-2025-12465 was published Dec 2, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,734 advisories