Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+

4,241 advisories

Loading
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1875 was published Mar 3, 2025
SQL injection vulnerability have been found in 101news affecting version 1.0 through the ... Critical Unreviewed
CVE-2025-1871 was published Mar 3, 2025
GFast between v2 to v3.2 was discovered to contain a SQL injection vulnerability via the OrderBy... Critical Unreviewed
CVE-2024-55160 was published Feb 27, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-13148 was published Feb 27, 2025
A SQL Injection vulnerability has been found in Ciges 2.15.5 from ATISoluciones. This... Critical Unreviewed
CVE-2025-1751 was published Feb 27, 2025
Seacms <=13.3 is vulnerable to SQL Injection in admin_type_news.php. Critical Unreviewed
CVE-2025-25521 was published Feb 26, 2025
Seacms <=13.3 is vulnerable to SQL Injection in admin_zyk.php. Critical Unreviewed
CVE-2025-25519 was published Feb 26, 2025
Seacms <=13.3 is vulnerable to SQL Injection in admin_reslib.php. Critical Unreviewed
CVE-2025-25517 was published Feb 26, 2025
Seacms <=13.3 is vulnerable to SQL Injection in admin_paylog.php. Critical Unreviewed
CVE-2025-25516 was published Feb 26, 2025
Seacms <13.3 is vulnerable to SQL Injection in admin_pay.php. Critical Unreviewed
CVE-2025-25520 was published Feb 26, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26974 was published Feb 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26943 was published Feb 25, 2025
SQL Injection vulnerability in SeaCMS v.13.2 and before allows a remote attacker to execute... Critical Unreviewed
CVE-2025-22974 was published Feb 25, 2025
NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL... Critical Unreviewed
CVE-2024-53544 was published Feb 25, 2025
Seacms <=13.3 is vulnerable to SQL Injection in admin_members.php. Critical Unreviewed
CVE-2025-25513 was published Feb 25, 2025
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2024-54820 was published Feb 24, 2025
Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail... Critical Unreviewed
CVE-2025-24490 was published Feb 24, 2025
A time-based blind SQL Injection vulnerability exists in the ChurchCRM 5.13.0 and prior... Critical Unreviewed
CVE-2025-1132 was published Feb 19, 2025
A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2025-1133 was published Feb 19, 2025
A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2025-1134 was published Feb 19, 2025
A vulnerability exists in ChurchCRM 5.13.0. and prior that allows an attacker to execute... Critical Unreviewed
CVE-2025-1135 was published Feb 19, 2025
A time-based SQL injection vulnerability in the login page of BoardRoom Limited Dividend... Critical Unreviewed
CVE-2024-55460 was published Feb 18, 2025
A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2025-1023 was published Feb 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22290 was published Feb 17, 2025
Authorization Bypass Through User-Controlled SQL Primary Key vulnerability in BSS Software Mobuy... Critical Unreviewed
CVE-2024-13152 was published Feb 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database