Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,636
Maven
5,000+
npm
4,262
NuGet
760
pip
4,057
Pub
12
RubyGems
956
Rust
1,054
Swift
45
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

14,953 advisories

Loading
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-52820 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-52720 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-54669 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49267 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49033 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-30998 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39510 was published Aug 14, 2025
A vulnerability was found in SourceCodester COVID 19 Testing Management System 1.0. Affected by... Moderate Unreviewed
CVE-2025-8926 was published Aug 13, 2025
A vulnerability was determined in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6... Moderate Unreviewed
CVE-2025-8908 was published Aug 13, 2025
Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-8914 was published Aug 13, 2025
The Tutor LMS Pro – eLearning and online course solution plugin for WordPress is vulnerable to... High Unreviewed
CVE-2025-6184 was published Aug 13, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-53727 was published Aug 12, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-49759 was published Aug 12, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-47954 was published Aug 12, 2025
SQL injection in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated... High Unreviewed
CVE-2025-8296 was published Aug 12, 2025
A vulnerability was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0... Moderate Unreviewed
CVE-2025-8806 was published Aug 10, 2025
A vulnerability, which was classified as critical, was found in Dinstar Monitoring Platform... Moderate Unreviewed
CVE-2025-8773 was published Aug 9, 2025
Cyclope Employee Surveillance Solution versions 6.x is vulnerable to a SQL injection flaw in its... Critical Unreviewed
CVE-2012-10047 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... High Unreviewed
CVE-2025-50466 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... High Unreviewed
CVE-2025-50465 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... Moderate Unreviewed
CVE-2025-50467 was published Aug 8, 2025
A vulnerability in the Suite Applications Services component of Mitel MiCollab 10.0 through SP1... High Unreviewed
CVE-2025-52914 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... Moderate Unreviewed
CVE-2025-50468 was published Aug 8, 2025
Easy Hosting Control Panel EHCP v20.04.1.b was discovered to contain a SQL injection... Moderate Unreviewed
CVE-2025-50928 was published Aug 8, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41522 was published Aug 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database