GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,787

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

14,950 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System... Moderate Unreviewed

CVE-2025-11309 was published Oct 6, 2025

A weakness has been identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1... Moderate Unreviewed

CVE-2025-11310 was published Oct 6, 2025

A security vulnerability has been detected in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System... Moderate Unreviewed

CVE-2025-11311 was published Oct 6, 2025

The endpoint POST /api/staff/get-new-tickets concatenates the user-controlled parameter... High Unreviewed

CVE-2025-10692 was published Oct 3, 2025

An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-53595 was published Oct 3, 2025

An SQL injection vulnerability has been reported to affect Qsync Central. If a remote attacker... High Unreviewed

CVE-2025-54153 was published Oct 3, 2025

An SQL injection vulnerability has been reported to affect Video Station. If a remote attacker... Moderate Unreviewed

CVE-2024-56804 was published Oct 3, 2025

A SQL injection vulnerability was discovered in the /articles endpoint of MyClub 0.5, affecting... Moderate Unreviewed

CVE-2025-57423 was published Oct 3, 2025

The Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App plugin for... High Unreviewed

CVE-2025-9200 was published Oct 3, 2025

The Woo superb slideshow transition gallery with random effect plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-9199 was published Oct 3, 2025

The Wp cycle text announcement plugin for WordPress is vulnerable to SQL Injection via the 'cycle... Moderate Unreviewed

CVE-2025-9198 was published Oct 3, 2025

The WPRecovery plugin for WordPress is vulnerable to SQL Injection via the 'data[id]' parameter... Critical Unreviewed

CVE-2025-10726 was published Oct 3, 2025

SQL injection vulnerability in Joomla module mod_vvisit_counter v2.0.4j3. This vulnerability... Critical Unreviewed

CVE-2025-40636 was published Oct 3, 2025

The WP Dispatcher plugin for WordPress is vulnerable to SQL Injection via the ‘id’ parameter in... High Unreviewed

CVE-2025-10582 was published Oct 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-0616 was published Oct 3, 2025

YOSHOP 2.0 suffers from an unauthenticated SQL injection in the goodsIds parameter of the /api... Moderate Unreviewed

CVE-2025-56162 was published Oct 2, 2025

PHPGurukul Online Shopping Portal Project v2.1 is vulnerable to SQL Injection in /shopping/login... Moderate Unreviewed

CVE-2025-61096 was published Oct 2, 2025

SQL injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability could allow an attacker... Critical Unreviewed

CVE-2025-59743 was published Oct 2, 2025

SQL injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability could allow an attacker... Critical Unreviewed

CVE-2025-59742 was published Oct 2, 2025

Frappe Framework v15.72.4 was discovered to contain a SQL injection vulnerability via the... Moderate Unreviewed

CVE-2025-56380 was published Oct 2, 2025

ERPNEXT v15.67.0 was discovered to contain multiple SQL injection vulnerabilities in the /api... Moderate Unreviewed

CVE-2025-56381 was published Oct 2, 2025

In Frappe ERPNext 15.57.5, the function get_material_requests_based_on_supplier() at erpnext... High Unreviewed

CVE-2025-52039 was published Oct 1, 2025

In Frappe ERPNext 15.57.5, the function get_stock_balance_for() at erpnext/stock/doctype... High Unreviewed

CVE-2025-52041 was published Oct 1, 2025

In Frappe ERPNext 15.57.5, the function get_rfq_containing_supplier() at erpnext/buying/doctype... High Unreviewed

CVE-2025-52042 was published Oct 1, 2025

An SQL injection vulnerability in user-login.php and index.php of Karthikg1908 Hospital... Moderate Unreviewed

CVE-2025-57254 was published Sep 30, 2025

Previous 1…12…400 Next

Previous 1 2 … 10 11 12 13 14 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

14,950 advisories