Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

4,182 advisories

Loading
owncast is vulnerable to SQL Injection Critical
CVE-2022-3751 was published for github.com/owncast/owncast (Go) Nov 29, 2022
Online-shopping-system-advanced 1.0 was discovered to contain a SQL injection vulnerability via... Critical Unreviewed
CVE-2022-42109 was published Nov 29, 2022
Codeastro Bus Ticket Booking System v1.0 is vulnerable to SQL injection via the kodetiket... Critical Unreviewed
CVE-2025-25775 was published Apr 25, 2025
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id... Critical Unreviewed
CVE-2022-43213 was published Nov 23, 2022
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-43215 was published Nov 22, 2022
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-43214 was published Nov 22, 2022
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2022-43212 was published Nov 22, 2022
SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve,... Critical Unreviewed
CVE-2025-40617 was published Apr 29, 2025
SQL injection vulnerability in Bookgy. This vulnerability could allow an attacker to retrieve,... Critical Unreviewed
CVE-2025-40618 was published Apr 29, 2025
An issue was discovered in Appalti & Contratti 9.12.2. The target web applications are subject to... Critical Unreviewed
CVE-2022-44785 was published Nov 22, 2022
org.xwiki.platform:xwiki-platform-rest-server allows SQL injection in query endpoint of REST API Critical
CVE-2025-32969 was published for org.xwiki.platform:xwiki-platform-rest-server (Maven) Apr 23, 2025
madprogrammer
WoWonder Social Network Platform 4.1.4 was discovered to contain a SQL injection vulnerability... Critical Unreviewed
CVE-2022-42984 was published Nov 15, 2022
The EU Cookie Law GDPR (Banner + Blocker) module before 2.1.3 for PrestaShop allows SQL Injection... Critical Unreviewed
CVE-2022-44727 was published Nov 10, 2022
Le-show medical practice management system from Le-yan has a SQL Injection vulnerability,... Critical Unreviewed
CVE-2025-3708 was published May 2, 2025
SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in ... Critical Unreviewed
CVE-2025-44192 was published Apr 30, 2025
CandidATS version 3.0.0 allows an external attacker to perform CRUD operations on the application... Critical Unreviewed
CVE-2022-42744 was published Nov 4, 2022
Wuzhi CMS v4.1 contains a SQL injection vulnerability in the checktitle() function in /coreframe... Critical Unreviewed
CVE-2020-20122 was published May 24, 2022
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in osms/Requester... Critical Unreviewed
CVE-2025-45322 was published May 5, 2025
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component... Critical Unreviewed
CVE-2025-44072 was published May 6, 2025
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component... Critical Unreviewed
CVE-2025-44074 was published May 6, 2025
A SQL injection vulnerability was discovered in edit-ticket.php of PHPGurukul Park Ticketing... Critical Unreviewed
CVE-2025-45017 was published Apr 30, 2025
A SQL Injection vulnerability was discovered in the foreigner-bwdates-reports-details.php file of... Critical Unreviewed
CVE-2025-45018 was published Apr 30, 2025
Slims (Senayan Library Management Systems) 9 Bulian V9.6.1 is vulnerable to SQL Injection in... Critical Unreviewed
CVE-2025-25403 was published Apr 29, 2025
A SQL injection vulnerability was discovered in /add-foreigners-ticket.php file of PHPGurukul... Critical Unreviewed
CVE-2025-45019 was published Apr 30, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-47657 was published May 7, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database