Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
37
GitHub Actions
36
Go
2,500
Maven
5,000+
npm
4,145
NuGet
735
pip
3,947
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,076 advisories

Loading
A vulnerability classified as critical was found in Shanghai Lingdang Information Technology... Moderate Unreviewed
CVE-2025-8345 was published Jul 31, 2025
A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud... Moderate Unreviewed
CVE-2025-8347 was published Jul 31, 2025
Rocket Software Rocket Zena 4.4.1.26 is vulnerable to SQL Injection via the filter parameter. High Unreviewed
CVE-2024-45955 was published Jul 30, 2025
The Smart Slider 3 plugin for WordPress is vulnerable to time-based SQL Injection via the ... Moderate Unreviewed
CVE-2025-6348 was published Jul 30, 2025
Phpgurukul Pre-School Enrollment System 1.0 contains a SQL injection vulnerability in the /admin... Moderate Unreviewed
CVE-2025-51045 was published Jul 29, 2025
phpgurukul Nipah virus (NiV) Testing Management System 1.0 contains a SQL injection vulnerability... Moderate Unreviewed
CVE-2025-51044 was published Jul 29, 2025
Bacula-web SQL Injection Vulnerability High
CVE-2025-45346 was published for bacula-web/bacula-web (Composer) Jul 29, 2025
Piwigo 13.8.0 and below is vulnerable to SQL Injection in the parameters max_level and... Moderate Unreviewed
CVE-2024-43018 was published Jul 29, 2025
SQL Injection affecting the Archiver role. High Unreviewed
CVE-2025-2928 was published Jul 29, 2025
A SQL Injection vulnerability exists in the action.php endpoint of PuneethReddyHC Online Shopping... High Unreviewed
CVE-2025-51970 was published Jul 29, 2025
SQL injection vulnerability in Human Resource Management System version 1.0, which allows an... High Unreviewed
CVE-2025-40682 was published Jul 29, 2025
The Bricks theme for WordPress is vulnerable to blind SQL Injection via the ‘p’ parameter in all... High Unreviewed
CVE-2025-6495 was published Jul 29, 2025
z-push/z-push-dev SQL Injection Vulnerability High
CVE-2025-8264 was published for z-push/z-push-dev (Composer) Jul 29, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-6918 was published Jul 28, 2025
A vulnerability was found in Campcodes Courier Management System 1.0. It has been declared as... Moderate Unreviewed
CVE-2025-8254 was published Jul 28, 2025
A vulnerability was found in code-projects Exam Form Submission 1.0 and classified as critical.... Moderate Unreviewed
CVE-2025-8252 was published Jul 28, 2025
A vulnerability was found in code-projects Exam Form Submission 1.0. It has been classified as... Moderate Unreviewed
CVE-2025-8253 was published Jul 28, 2025
A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.4.7.... Moderate Unreviewed
CVE-2025-8219 was published Jul 27, 2025
The GeoDirectory – WP Business Directory Plugin and Classified Listings Directory plugin for... High Unreviewed
CVE-2024-13507 was published Jul 26, 2025
A vulnerability classified as critical was found in deerwms deer-wms-2 up to 3.3. Affected by... Moderate Unreviewed
CVE-2025-8161 was published Jul 25, 2025
A vulnerability, which was classified as critical, has been found in deerwms deer-wms-2 up to 3.3... Moderate Unreviewed
CVE-2025-8162 was published Jul 25, 2025
A vulnerability, which was classified as critical, was found in deerwms deer-wms-2 up to 3.3.... Moderate Unreviewed
CVE-2025-8163 was published Jul 25, 2025
An SQL injection vulnerability exists in Commvault 11.32.0 - 11.32.93, 11.36.0 - 11.36.51, and 11... Moderate Unreviewed
CVE-2025-34136 was published Jul 25, 2025
An unauthenticated SQL injection vulnerability exists in Pandora FMS version 5.0 SP2 and earlier.... Critical Unreviewed
CVE-2014-125115 was published Jul 25, 2025
CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the... Moderate Unreviewed
CVE-2025-44608 was published Jul 25, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database