GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,618
Composer 5,007
Erlang 39
GitHub Actions 38
Go 2,640
Maven 6,105
npm 4,265
NuGet 760
pip 4,060
Pub 12
RubyGems 956
Rust 1,057
Swift 45

Unreviewed advisories

All unreviewed 277,077

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,537 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability has been found in fuyang_lipengjun platform up to... Moderate Unreviewed

CVE-2025-7936 was published Jul 21, 2025

A SQL Injection vulnerability was discovered in the Smart Polling functionality due to improper... Moderate Unreviewed

CVE-2025-40885 was published Oct 7, 2025

A SQL Injection vulnerability was discovered in the CLI functionality due to improper validation... Moderate Unreviewed

CVE-2025-40888 was published Oct 7, 2025

A SQL Injection vulnerability was discovered in the Alert functionality due to improper... Moderate Unreviewed

CVE-2025-40887 was published Oct 7, 2025

A SQL Injection vulnerability was discovered in the Alert functionality due to improper... High Unreviewed

CVE-2025-40886 was published Oct 7, 2025

An SQL injection vulnerability has been reported to affect Video Station. If a remote attacker... Moderate Unreviewed

CVE-2024-56804 was published Oct 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-0603 was published Oct 7, 2025

A vulnerability was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0... Moderate Unreviewed

CVE-2025-8806 was published Aug 10, 2025

A SQL injection vulnerability has been identified in Uniclare Student Portal v2. This flaw allows... Critical Unreviewed

CVE-2025-57515 was published Oct 6, 2025

XWiki Platform is vulnerable to HQL injection via wiki and space search REST API Critical

CVE-2025-52472 was published for org.xwiki.platform:xwiki-platform-rest-server (Maven) Oct 6, 2025

A weakness has been identified in lostvip-com ruoyi-go up to 2.1. The affected element is the... Moderate Unreviewed

CVE-2025-9410 was published Aug 26, 2025

The endpoint POST /api/staff/get-new-tickets concatenates the user-controlled parameter... High Unreviewed

CVE-2025-10692 was published Oct 3, 2025

A weakness has been identified in PHPGurukul Small CRM 4.0. This affects an unknown function of... Moderate Unreviewed

CVE-2025-11053 was published Sep 27, 2025

SQL injection vulnerability in the LiveData service in CSWorks before 2.5.5233.0 allows remote... High Unreviewed

CVE-2014-2351 was published May 17, 2022

The Woo superb slideshow transition gallery with random effect plugin for WordPress is vulnerable... Moderate Unreviewed

CVE-2025-9199 was published Oct 3, 2025

The Wp cycle text announcement plugin for WordPress is vulnerable to SQL Injection via the 'cycle... Moderate Unreviewed

CVE-2025-9198 was published Oct 3, 2025

The WPRecovery plugin for WordPress is vulnerable to SQL Injection via the 'data[id]' parameter... Critical Unreviewed

CVE-2025-10726 was published Oct 3, 2025

SQL injection vulnerability in Joomla module mod_vvisit_counter v2.0.4j3. This vulnerability... Critical Unreviewed

CVE-2025-40636 was published Oct 3, 2025

The Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App plugin for... High Unreviewed

CVE-2025-9200 was published Oct 3, 2025

The WP Dispatcher plugin for WordPress is vulnerable to SQL Injection via the ‘id’ parameter in... High Unreviewed

CVE-2025-10582 was published Oct 3, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-0616 was published Oct 3, 2025

A vulnerability was found in IdeaCMS up to 1.7 and classified as critical. This issue affects the... Moderate Unreviewed

CVE-2025-5569 was published Jun 4, 2025

YOSHOP 2.0 suffers from an unauthenticated SQL injection in the goodsIds parameter of the /api... Moderate Unreviewed

CVE-2025-56162 was published Oct 2, 2025

A vulnerability was detected in FoxCMS up to 1.24. Affected by this issue is the function... Moderate Unreviewed

CVE-2025-10251 was published Sep 11, 2025

SQL injection vulnerability in AndSoft's e-TMS v25.03. This vulnerability could allow an attacker... Critical Unreviewed

CVE-2025-59743 was published Oct 2, 2025

Previous 1…18…400 Next

Previous 1 2 … 16 17 18 19 20 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,537 advisories