Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,638
Maven
5,000+
npm
4,264
NuGet
760
pip
4,060
Pub
12
RubyGems
956
Rust
1,056
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,537 advisories

Loading
The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to... Moderate Unreviewed
CVE-2025-12620 was published Nov 13, 2025
The patient prescription viewing functionality in his_doc_view_single_patient.php of rickxy... High Unreviewed
CVE-2025-63497 was published Nov 10, 2025
A SQL injection vulnerability exists in the SourceCodester PQMS (Patient Queue Management System)... Moderate Unreviewed
CVE-2025-63718 was published Nov 7, 2025
SQL injection in Revive Adserver 6.0.0 causes potential disruption or information access when... High Unreviewed
CVE-2025-52664 was published Oct 31, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-64293 was published Nov 12, 2025
Bus Pass Management System 1.0 was discovered to contain a SQL Injection vulnerability via the... Critical Unreviewed
CVE-2022-35156 was published Oct 1, 2022
The Specific Content For Mobile – Customize the mobile version without redirections plugin for... Moderate Unreviewed
CVE-2025-11454 was published Nov 12, 2025
Bacteriology Laboratory Reporting System developed by ViewLead Technology has a SQL Injection... High Unreviewed
CVE-2025-13047 was published Nov 12, 2025
Bacteriology Laboratory Reporting System developed by ViewLead Technology has a SQL Injection... High Unreviewed
CVE-2025-13046 was published Nov 12, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Bus Pass Management... Moderate Unreviewed
CVE-2025-3146 was published Apr 3, 2025
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full... High Unreviewed
CVE-2020-5510 was published May 24, 2022
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-59499 was published Nov 11, 2025
Projectworlds Visitor Management System in PHP 1.0 allows SQL Injection. The file front.php does... High Unreviewed
CVE-2020-25760 was published May 24, 2022
SQL Injection vulnerability in CASAP Automated Enrollment System using PHP/MySQLi with Source... Critical Unreviewed
CVE-2024-33485 was published May 14, 2024
Zohocorp ManageEngine Analytics Plus versions 6170 and below are vulnerable to Unauthenticated... Critical Unreviewed
CVE-2025-8324 was published Nov 11, 2025
SAP Starter Solution allows an authenticated attacker to execute crafted database queries,... Moderate Unreviewed
CVE-2025-42889 was published Nov 11, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-52773 was published Nov 6, 2025
A vulnerability classified as critical has been found in chaitak-gorai Blogbook up to... Moderate Unreviewed
CVE-2025-5403 was published Jun 1, 2025
TorrentPier is Vulnerable to Authenticated SQL Injection through Moderator Control Panel's topic_id parameter High
CVE-2025-64519 was published for torrentpier/torrentpier (Composer) Nov 10, 2025
XY20130630
Credited to XY20130630
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-48089 was published Nov 6, 2025
A vulnerability was found in chaitak-gorai Blogbook up to... Moderate Unreviewed
CVE-2025-5400 was published Jun 1, 2025
A vulnerability was found in chaitak-gorai Blogbook up to... Moderate Unreviewed
CVE-2025-5401 was published Jun 1, 2025
A vulnerability was found in chaitak-gorai Blogbook up to... Moderate Unreviewed
CVE-2025-5402 was published Jun 1, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-28953 was published Nov 6, 2025
A vulnerability classified as critical has been found in gongfuxiang schoolcms 2.3.1. This... Moderate Unreviewed
CVE-2025-4795 was published May 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database