Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,520 advisories

Loading
A vulnerability has been found in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1... Moderate Unreviewed
CVE-2025-11314 was published Oct 6, 2025
A vulnerability was determined in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1... Moderate Unreviewed
CVE-2025-11316 was published Oct 6, 2025
The ADOdb sqlite3 driver allows SQL injection Critical
CVE-2025-54119 was published for adodb/adodb-php (Composer) Aug 4, 2025
mrcnpp dregad
Credited to mrcnpp and dregad
A security vulnerability has been detected in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System... Moderate Unreviewed
CVE-2025-11311 was published Oct 6, 2025
A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System... Moderate Unreviewed
CVE-2025-11309 was published Oct 6, 2025
A weakness has been identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1... Moderate Unreviewed
CVE-2025-11310 was published Oct 6, 2025
activerecord vulnerable to SQL Injection High
CVE-2011-2930 was published for activerecord (RubyGems) Oct 24, 2017
tjuyuxinzhang
Credited to tjuyuxinzhang
EasyFlow .NET and EasyFlow AiNet developed by Digiwin has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-12503 was published Nov 3, 2025
The wpForo Forum plugin for WordPress is vulnerable to SQL Injection via the Subscriptions... Moderate Unreviewed
CVE-2025-11740 was published Nov 1, 2025
SQL injection vulnerability in Schneider Electric Wonderware Information Server (WIS) Portal 4.0... High Unreviewed
CVE-2014-5399 was published May 17, 2022
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-64366 was published Oct 31, 2025
A vulnerability was found in ponaravindb Hospital Management System 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-6339 was published Jun 20, 2025
A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts... Moderate Unreviewed
CVE-2025-11911 was published Oct 17, 2025
A vulnerability has been found in RainyGao DocSys up to 2.02.36. This impacts the function... Moderate Unreviewed
CVE-2025-11629 was published Oct 12, 2025
A security vulnerability has been detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40.... Moderate Unreviewed
CVE-2025-11910 was published Oct 17, 2025
A flaw has been found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected is the... Moderate Unreviewed
CVE-2025-11912 was published Oct 17, 2025
A weakness has been identified in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The... Moderate Unreviewed
CVE-2025-11909 was published Oct 17, 2025
TypeORM vulnerable to SQL injection via crafted request to repository.save or repository.update High
CVE-2025-60542 was published for typeorm (npm) Oct 29, 2025
cavadalizada
Credited to cavadalizada
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-6520 was published Oct 31, 2025
A vulnerability was found in code-projects Food Ordering System 1.0. The impacted element is an... Moderate Unreviewed
CVE-2025-12314 was published Oct 27, 2025
A vulnerability was determined in code-projects Food Ordering System 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-12315 was published Oct 27, 2025
A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects... Moderate Unreviewed
CVE-2025-12325 was published Oct 27, 2025
A vulnerability was identified in code-projects Courier Management System 1.0. This impacts an... Moderate Unreviewed
CVE-2025-12316 was published Oct 27, 2025
A weakness has been identified in code-projects Nero Social Networking Site 1.0. This affects an... Moderate Unreviewed
CVE-2025-12309 was published Oct 27, 2025
A vulnerability was found in code-projects Online Complaint Site 1.0. This issue affects some... Critical Unreviewed
CVE-2025-63622 was published Oct 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database