Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,843 advisories

Loading
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-47954 was published Aug 12, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in SQL... High Unreviewed
CVE-2025-49759 was published Aug 12, 2025
SQL injection in Ivanti Avalanche before version 6.4.8.8008 allows a remote authenticated... High Unreviewed
CVE-2025-8296 was published Aug 12, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... High Unreviewed
CVE-2025-50465 was published Aug 8, 2025
OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the... High Unreviewed
CVE-2025-50466 was published Aug 8, 2025
A vulnerability in the Suite Applications Services component of Mitel MiCollab 10.0 through SP1... High Unreviewed
CVE-2025-52914 was published Aug 8, 2025
Student Attendance Management System v1 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2023-41524 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41520 was published Aug 7, 2025
Hospital Management System v4 was discovered to contain multiple SQL injection vulnerabilities in... High Unreviewed
CVE-2023-41531 was published Aug 7, 2025
Hospital Management System v4 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2023-41532 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41521 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain multiple SQL injection... High Unreviewed
CVE-2023-41522 was published Aug 7, 2025
Student Attendance Management System v1 was discovered to contain a SQL injection vulnerability... High Unreviewed
CVE-2023-41523 was published Aug 7, 2025
The CleverReach® WP plugin for WordPress is vulnerable to time-based SQL Injection via the ‘title... High Unreviewed
CVE-2025-7036 was published Aug 6, 2025
An authenticated SQL injection vulnerability exists in OpenEMR ≤ 4.1.1 Patch 14 that allows a low... High Unreviewed
CVE-2013-10044 was published Aug 1, 2025
SQL Injection vulnerability in Restaurant Order System 1.0 allows a local attacker to obtain... High Unreviewed
CVE-2025-52327 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41376 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41374 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41375 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41373 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41372 was published Aug 1, 2025
Rocket Software Rocket Zena 4.4.1.26 is vulnerable to SQL Injection via the filter parameter. High Unreviewed
CVE-2024-45955 was published Jul 30, 2025
SQL Injection affecting the Archiver role. High Unreviewed
CVE-2025-2928 was published Jul 29, 2025
A SQL Injection vulnerability exists in the action.php endpoint of PuneethReddyHC Online Shopping... High Unreviewed
CVE-2025-51970 was published Jul 29, 2025
SQL injection vulnerability in Human Resource Management System version 1.0, which allows an... High Unreviewed
CVE-2025-40682 was published Jul 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database