GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,417
Composer 4,951
Erlang 39
GitHub Actions 38
Go 2,607
Maven 6,062
npm 4,251
NuGet 757
pip 4,017
Pub 12
RubyGems 953
Rust 1,049
Swift 45

Unreviewed advisories

All unreviewed 275,244

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,990 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an... Critical Unreviewed

CVE-2025-41009 was published Oct 27, 2025

A SQL injection vulnerability has been identified in DobryCMS. Improper neutralization of input... Critical Unreviewed

CVE-2025-8536 was published Oct 24, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-11253 was published Oct 24, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-59557 was published Oct 22, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-49931 was published Oct 22, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-49915 was published Oct 22, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40655 was published Jun 10, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40654 was published Jun 10, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40656 was published Jun 10, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40657 was published Jun 10, 2025

A SQL Injection vulnerability exists in Esri ArcGIS Server versions 11.3, 11.4 and 11.5 on... Critical Unreviewed

CVE-2025-57870 was published Oct 22, 2025

An improper neutralization of special elements used in an SQL command ('SQL Injection')... Critical Unreviewed

CVE-2025-25257 was published Jul 17, 2025

An SQL injection vulnerability in Palo Alto Networks Expedition allows an unauthenticated... Critical Unreviewed

CVE-2024-9465 was published Oct 9, 2024

In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an... Critical Unreviewed

CVE-2024-6670 was published Aug 30, 2024

A improper neutralization of special elements used in an sql command ('sql injection') in... Critical Unreviewed

CVE-2023-48788 was published Mar 12, 2024

In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022... Critical Unreviewed

CVE-2023-34362 was published Jun 2, 2023

** UNSUPPORTED WHEN ASSIGNED ** Improper neutralization of a SQL Command leading to SQL Injection... Critical Unreviewed

CVE-2021-20028 was published May 24, 2022

Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a... Critical Unreviewed

CVE-2021-27101 was published May 24, 2022

A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote... Critical Unreviewed

CVE-2021-20016 was published May 24, 2022

An unspecified SQL Injection vulnerability in Core server of Ivanti EPM 2022 SU5 and prior allows... Critical Unreviewed

CVE-2024-29824 was published May 31, 2024

A SQL Injection (CWE-89) vulnerability exists in U.motion Builder software version 1.3.4 which... Critical Unreviewed

CVE-2018-7841 was published May 24, 2022

Roundcube before 1.3.17 and 1.4.x before 1.4.12 is prone to a potential SQL injection via search... Critical Unreviewed

CVE-2021-44026 was published May 24, 2022

BQE BillQuick Web Suite 2018 through 2021 before 22.0.9.1 allows SQL injection for... Critical Unreviewed

CVE-2021-42258 was published May 24, 2022

SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote... Critical Unreviewed

CVE-2016-2386 was published May 13, 2022

An SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows... Critical Unreviewed

CVE-2020-29574 was published May 24, 2022

Previous1…160 Next

Previous 1 2 3 4 5 … 159 160 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,990 advisories