Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,529 advisories

Loading
A vulnerability was found in code-projects Client Details System 1.0. Affected by this issue is... Moderate Unreviewed
CVE-2025-12243 was published Oct 27, 2025
A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-12263 was published Oct 27, 2025
A flaw has been found in projectworlds Online Shopping System 1.0. Impacted is an unknown... Moderate Unreviewed
CVE-2025-12215 was published Oct 27, 2025
A vulnerability was found in SourceCodester Best House Rental Management System 1.0. Impacted is... Moderate Unreviewed
CVE-2025-12226 was published Oct 27, 2025
A vulnerability was determined in code-projects Online Event Judging System 1.0. This impacts an... Moderate Unreviewed
CVE-2025-12262 was published Oct 27, 2025
pg8000 SQL injection vulnerability via a specially crafted Python list input High
CVE-2025-61385 was published for pg8000 (pip) Oct 27, 2025
indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in the password... High Unreviewed
CVE-2025-61247 was published Oct 27, 2025
A vulnerability was identified in projectworlds Advanced Library Management System 1.0. Impacted... Moderate Unreviewed
CVE-2025-12237 was published Oct 27, 2025
AhnLab EPP 1.0.15 is vulnerable to SQL Injection via the "preview parameter." Moderate Unreviewed
CVE-2023-49440 was published Oct 27, 2025
LangGraph's SQLite store implementation has a SQL Injection Vulnerability High
CVE-2025-8709 was published for langgraph-checkpoint-sqlite (pip) Oct 26, 2025
A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected... Moderate Unreviewed
CVE-2025-12238 was published Oct 27, 2025
SQL injection vulnerability in the DRED virtual campus platform. This vulnerability allows an... Critical Unreviewed
CVE-2025-41009 was published Oct 27, 2025
The Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More... High Unreviewed
CVE-2025-11893 was published Oct 25, 2025
The wpForo Forum plugin for WordPress is vulnerable to error‐based or time-based SQL Injection... High Unreviewed
CVE-2025-4203 was published Oct 25, 2025
The Stripe Payment Forms by WP Full Pay – Accept Credit Card Payments, Donations & Subscriptions... High Unreviewed
CVE-2025-9322 was published Oct 25, 2025
The Product Filter by WBW plugin for WordPress is vulnerable to SQL Injection via the ... High Unreviewed
CVE-2025-8416 was published Oct 25, 2025
A vulnerability has been found in yanyutao0402 ChanCMS up to 3.3.2. This affects the function... Moderate Unreviewed
CVE-2025-11904 was published Oct 17, 2025
A vulnerability was detected in yanyutao0402 ChanCMS up to 3.3.2. Affected by this vulnerability... Moderate Unreviewed
CVE-2025-11902 was published Oct 17, 2025
A flaw has been found in yanyutao0402 ChanCMS up to 3.3.2. Affected by this issue is the function... Moderate Unreviewed
CVE-2025-11903 was published Oct 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-62015 was published Oct 22, 2025
A SQL injection vulnerability has been identified in DobryCMS. Improper neutralization of input... Critical Unreviewed
CVE-2025-8536 was published Oct 24, 2025
The URL Shortener Plugin For WordPress plugin for WordPress is vulnerable to unauthorized access... Moderate Unreviewed
CVE-2025-10740 was published Oct 24, 2025
The RapidResult plugin for WordPress is vulnerable to SQL Injection via the 's' parameter in all... Moderate Unreviewed
CVE-2025-10748 was published Oct 24, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-11253 was published Oct 24, 2025
gnuboard gnuboard4 v4.36.04 and before is vulnerable to Second-order SQL Injection via the... Moderate Unreviewed
CVE-2025-61464 was published Oct 23, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database