Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,532 advisories

Loading
SQL injection vulnerability in Schneider Electric Wonderware Information Server (WIS) Portal 4.0... High Unreviewed
CVE-2014-5399 was published May 17, 2022
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-64366 was published Oct 31, 2025
A vulnerability was found in ponaravindb Hospital Management System 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-6339 was published Jun 20, 2025
A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. This impacts... Moderate Unreviewed
CVE-2025-11911 was published Oct 17, 2025
A vulnerability has been found in RainyGao DocSys up to 2.02.36. This impacts the function... Moderate Unreviewed
CVE-2025-11629 was published Oct 12, 2025
A security vulnerability has been detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.40.... Moderate Unreviewed
CVE-2025-11910 was published Oct 17, 2025
A flaw has been found in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. Affected is the... Moderate Unreviewed
CVE-2025-11912 was published Oct 17, 2025
A weakness has been identified in Shenzhen Ruiming Technology Streamax Crocus 1.3.40. The... Moderate Unreviewed
CVE-2025-11909 was published Oct 17, 2025
TypeORM vulnerable to SQL injection via crafted request to repository.save or repository.update High
CVE-2025-60542 was published for typeorm (npm) Oct 29, 2025
cavadalizada
Credited to cavadalizada
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-6520 was published Oct 31, 2025
A vulnerability was found in code-projects Food Ordering System 1.0. The impacted element is an... Moderate Unreviewed
CVE-2025-12314 was published Oct 27, 2025
A vulnerability was determined in code-projects Food Ordering System 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-12315 was published Oct 27, 2025
A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects... Moderate Unreviewed
CVE-2025-12325 was published Oct 27, 2025
A vulnerability was identified in code-projects Courier Management System 1.0. This impacts an... Moderate Unreviewed
CVE-2025-12316 was published Oct 27, 2025
A weakness has been identified in code-projects Nero Social Networking Site 1.0. This affects an... Moderate Unreviewed
CVE-2025-12309 was published Oct 27, 2025
A vulnerability was found in code-projects Online Complaint Site 1.0. This issue affects some... Critical Unreviewed
CVE-2025-63622 was published Oct 29, 2025
A SQL injection vulnerability exists in CSZ-CMS <=1.3.0 in the Form Builder view functionality.... Moderate Unreviewed
CVE-2025-63608 was published Oct 30, 2025
LangGraph SQLite Checkpoint Filter Key SQL Injection POC for SqliteStore High
CVE-2025-64104 was published for langgraph-checkpoint-sqlite (pip) Oct 29, 2025
ColeMurray
Credited to ColeMurray
Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter... Critical Unreviewed
CVE-2021-43157 was published Dec 23, 2021
The Easy Testimonial Slider and Form plugin for WordPress is vulnerable to SQL Injection via the ... Moderate Unreviewed
CVE-2015-10147 was published Oct 29, 2025
The Thumbnail Slider With Lightbox plugin for WordPress is vulnerable to SQL Injection via the ... Moderate Unreviewed
CVE-2015-10146 was published Oct 29, 2025
A vulnerability was identified in kidaze CourseSelectionSystem up to... Moderate Unreviewed
CVE-2025-10477 was published Sep 15, 2025
A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted... Moderate Unreviewed
CVE-2025-11662 was published Oct 13, 2025
WordPress plugin Contact Form CFDB7 versions up to and including 1.3.2 are affected by a pre... Critical Unreviewed
CVE-2025-4665 was published Oct 29, 2025
A SQL injection vulnerability was discovered in the /articles endpoint of MyClub 0.5, affecting... Moderate Unreviewed
CVE-2025-57423 was published Oct 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database