GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,912
Composer 5,067
Erlang 39
GitHub Actions 38
Go 2,717
Maven 6,143
npm 4,328
NuGet 761
pip 4,105
Pub 12
RubyGems 958
Rust 1,065
Swift 45

Unreviewed advisories

All unreviewed 279,126

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,738 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing... High Unreviewed

CVE-2025-14254 was published Dec 8, 2025

Vitals ESP developed by Galaxy Software Services has a SQL Injection vulnerability, allowing... High Unreviewed

CVE-2025-14255 was published Dec 8, 2025

The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is... Moderate Unreviewed

CVE-2025-13922 was published Dec 6, 2025

The My auctions allegro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’... High Unreviewed

CVE-2025-12850 was published Dec 5, 2025

Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162)... High Unreviewed

CVE-2025-13373 was published Dec 5, 2025

dawa-pharma-1.0 allows unauthenticated attackers to execute SQL queries on the server, allowing... High Unreviewed

CVE-2023-53734 was published Dec 4, 2025

Obi08/Enrollment System 1.0 contains a SQL injection vulnerability in the keyword parameter of ... High Unreviewed

CVE-2024-58276 was published Dec 4, 2025

The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is... Moderate Unreviewed

CVE-2025-13359 was published Dec 3, 2025

The FluentCart plugin for WordPress is vulnerable to SQL Injection via the 'groupKey' parameter... Moderate Unreviewed

CVE-2025-13495 was published Dec 3, 2025

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint.... Moderate Unreviewed

CVE-2025-65380 was published Dec 2, 2025

Lvzhou CMS before commit c4ea0eb9cab5f6739b2c87e77d9ef304017ed615 (2025-09-22) is vulnerable to... Moderate Unreviewed

CVE-2025-65877 was published Dec 2, 2025

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php... Moderate Unreviewed

CVE-2025-65379 was published Dec 2, 2025

assyncmy is vulnerable to SQL injection via crafted dict keys Critical

CVE-2025-65896 was published for asyncmy (pip) Dec 2, 2025

code-projects Online Medicine Guide 1.0 is vulnerable to SQL Injection in /login.php via the... Critical Unreviewed

CVE-2025-60736 was published Dec 2, 2025

Edoc-doctor-appointment-system v1.0.1 was discovered to contain SQl injection vulnerability via... Critical Unreviewed

CVE-2025-65358 was published Dec 2, 2025

Django is vulnerable to SQL injection in column aliases Moderate

CVE-2025-13372 was published for Django (pip) Dec 2, 2025

A Blind SQL injection vulnerability has been identified in QuickCMS. Improper neutralization of... High Unreviewed

CVE-2025-12465 was published Dec 2, 2025

SQL injection vulnerability in TCMAN GIM v11 in version 20250304. This vulnerability allows an... High Unreviewed

CVE-2025-41013 was published Dec 2, 2025

The WP Directory Kit plugin for WordPress is vulnerable to SQL Injection via the 'search'... Moderate Unreviewed

CVE-2025-13090 was published Dec 2, 2025

The Visualizer: Tables and Charts Manager for WordPress plugin for WordPress is vulnerable to SQL... Moderate Unreviewed

CVE-2025-12483 was published Dec 2, 2025

The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to time-based... High Unreviewed

CVE-2025-13724 was published Dec 2, 2025

A blind SQL Injection (SQLi) vulnerability in mJobtime v15.7.2 allows unauthenticated attackers... Critical Unreviewed

CVE-2025-51683 was published Dec 1, 2025

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the abs.php... Critical Unreviewed

CVE-2025-63535 was published Dec 1, 2025

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the cancel... Critical Unreviewed

CVE-2025-63532 was published Dec 1, 2025

A SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the... Critical Unreviewed

CVE-2025-63531 was published Dec 1, 2025

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,738 advisories