Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
39
GitHub Actions
38
Go
2,645
Maven
5,000+
npm
4,271
NuGet
760
pip
4,065
Pub
12
RubyGems
957
Rust
1,057
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,541 advisories

Loading
A vulnerability classified as critical has been found in Jingmen Zeyou Large File Upload Control... Moderate Unreviewed
CVE-2025-8203 was published Jul 26, 2025
A vulnerability classified as critical has been found in Engeman Web up to 12.0.0.1. Affected is... Moderate Unreviewed
CVE-2025-8220 was published Jul 27, 2025
A vulnerability, which was classified as critical, has been found in Onyx up to 0.29.1. This... Moderate Unreviewed
CVE-2025-7894 was published Jul 20, 2025
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the entriesPerPage... Moderate Unreviewed
CVE-2022-43021 was published Oct 19, 2022
In Frappe ERPNext v15.57.5, the function get_stock_balance() at erpnext/stock/utils.py is... High Unreviewed
CVE-2025-52044 was published Sep 16, 2025
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the importID... Moderate Unreviewed
CVE-2022-43023 was published Oct 19, 2022
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable... Moderate Unreviewed
CVE-2022-43022 was published Oct 19, 2022
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-10439 was published Sep 17, 2025
The Quiz Maker plugin for WordPress is vulnerable to SQL Injection via spoofed IP headers in all... Moderate Unreviewed
CVE-2025-10042 was published Sep 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2023-44090 was published Mar 19, 2024
Unauth Time-Based SQL Injection in API allows to exploit HTTP request Authorization header. This... High Unreviewed
CVE-2024-35305 was published Jun 10, 2024
A vulnerability, which was classified as critical, was found in Dinstar Monitoring Platform... Moderate Unreviewed
CVE-2025-8773 was published Aug 9, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-13174 was published Sep 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 200 -... Critical Unreviewed
CVE-2024-13149 was published Sep 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-7744 was published Sep 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-4688 was published Sep 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-12913 was published Sep 16, 2025
OpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable... Moderate Unreviewed
CVE-2022-43020 was published Oct 19, 2022
Teampel 5.1.6 is vulnerable to SQL Injection in /Common/login.aspx. Moderate Unreviewed
CVE-2025-57104 was published Sep 15, 2025
A vulnerability was found in BoyunCMS up to 1.4.20. It has been declared as critical. This... Moderate Unreviewed
CVE-2025-7102 was published Jul 7, 2025
A vulnerability was detected in SourceCodester Simple Forum Discussion System 1.0. This impacts... Moderate Unreviewed
CVE-2025-10100 was published Sep 8, 2025
A security flaw has been discovered in PHPGurukul User Management System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-10098 was published Sep 8, 2025
A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud... Moderate Unreviewed
CVE-2025-8347 was published Jul 31, 2025
A weakness has been identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this issue is the... Moderate Unreviewed
CVE-2025-9391 was published Aug 24, 2025
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an... Critical Unreviewed
CVE-2025-40689 was published Sep 11, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database