Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,635
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

7,160 advisories

Loading
The Tutor LMS Pro – eLearning and online course solution plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-6184 was published Aug 13, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-53727 was published Aug 12, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-47954 was published Aug 12, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-49759 was published Aug 12, 2025
SQL injection in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated... High Unreviewed
CVE-2025-8296 was published Aug 12, 2025
PyLoad vulnerable to SQL Injection via API /json/add_package in add_links parameter High
CVE-2025-55156 was published for pyload-ng (pip) Aug 12, 2025
cyjhhh
Credited to cyjhhh
A vulnerability in the Suite Applications Services component of Mitel MiCollab 10.0 through SP1... High Unreviewed
CVE-2025-52914 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... High Unreviewed
CVE-2025-50466 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... High Unreviewed
CVE-2025-50465 was published Aug 8, 2025
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2023-41532 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41521 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41520 was published Aug 7, 2025
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in... High Unreviewed
CVE-2023-41531 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2023-41524 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41522 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2023-41523 was published Aug 7, 2025
The CleverReach® WP plugin for WordPress is vulnerable to time-based SQL Injection via the ‘title... High Unreviewed
CVE-2025-7036 was published Aug 6, 2025
An authenticated SQL injection vulnerability exists in OpenEMR ≤ 4.1.1 Patch 14 that allows a low... High Unreviewed
CVE-2013-10044 was published Aug 1, 2025
SQL Injection vulnerability in Restaurant Order System 1.0 allows a local attacker to obtain... High Unreviewed
CVE-2025-52327 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41375 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41376 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41374 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41372 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41373 was published Aug 1, 2025
Rocket Software Rocket Zena 4.4.1.26 is vulnerable to SQL Injection via the filter parameter. High Unreviewed
CVE-2024-45955 was published Jul 30, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database