Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,871
Erlang
37
GitHub Actions
36
Go
2,504
Maven
5,000+
npm
4,149
NuGet
735
pip
3,949
Pub
12
RubyGems
945
Rust
1,025
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,089 advisories

Loading
In the PatientService.pl service, the "getPatientIdentifier" function is vulnerable to SQL... Moderate Unreviewed
CVE-2025-30058 was published Aug 27, 2025
The Vibes plugin for WordPress is vulnerable to time-based SQL Injection via the ‘resource’... High Unreviewed
CVE-2025-9172 was published Aug 26, 2025
Easy!Appointments SQL injection vulnerability Moderate
CVE-2025-50383 was published for alextselegidis/easyappointments (Composer) Aug 26, 2025
SQL Injection vulnerability in SMM Panel 3.1 allowing remote attackers to gain sensitive... Critical Unreviewed
CVE-2025-55575 was published Aug 26, 2025
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in index.php via the... Critical Unreviewed
CVE-2025-56214 was published Aug 26, 2025
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in contact.php via the... Moderate Unreviewed
CVE-2025-56215 was published Aug 26, 2025
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in add-doctor.php via... Critical Unreviewed
CVE-2025-56212 was published Aug 26, 2025
phpgurukul Hospital Management System 4.0 is vulnerable to SQL Injection in about-us.php via the... High Unreviewed
CVE-2025-56216 was published Aug 26, 2025
A weakness has been identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this issue is the... Moderate Unreviewed
CVE-2025-9391 was published Aug 24, 2025
The LogIn-SignUp project by VishnuSivadasVS is vulnerable to SQL Injection due to unsafe... Critical Unreviewed
CVE-2025-51092 was published Aug 22, 2025
User with high privileges is able to introduce a SQLi using the Meta Service indicator page.... High Unreviewed
CVE-2025-4650 was published Aug 22, 2025
On the monitoring event logs page, it is possible to alter the http request to insert a payload... High Unreviewed
CVE-2025-6791 was published Aug 22, 2025
SQL Injection vulnerability in Apache StreamPark. This issue affects Apache StreamPark: from 2.1... High Unreviewed
CVE-2024-48988 was published Aug 22, 2025
An SQL injection vulnerability in Yoosee application v6.32.4 allows authenticated users to inject... High Unreviewed
CVE-2025-52085 was published Aug 22, 2025
Jeewms v3.7 was discovered to contain a SQL injection vulnerability via the CgReportController API. Critical Unreviewed
CVE-2024-53499 was published Aug 22, 2025
JeecgBoot SQL Injection Vulnerability Moderate
CVE-2025-51825 was published for org.jeecgframework.boot:jeecg-boot-base-core (Maven) Aug 22, 2025
WebITR developed by Uniong has a SQL Injection vulnerability, allowing unauthenticated remote... High Unreviewed
CVE-2025-9255 was published Aug 22, 2025
A vulnerability was identified in itsourcecode Apartment Management System 1.0. Affected by this... Moderate Unreviewed
CVE-2025-9311 was published Aug 21, 2025
A flaw has been found in PHPGurukul Online Course Registration 3.1. This affects an unknown... Moderate Unreviewed
CVE-2025-9307 was published Aug 21, 2025
A weakness has been identified in SourceCodester Online Bank Management System 1.0. Impacted is... Moderate Unreviewed
CVE-2025-9304 was published Aug 21, 2025
A security vulnerability has been detected in SourceCodester Online Bank Management System 1.0.... Moderate Unreviewed
CVE-2025-9305 was published Aug 21, 2025
SQL Injection in the listdomains function in Easy Hosting Control Panel (EHCP) 20.04.1.b allows... Moderate Unreviewed
CVE-2025-50860 was published Aug 21, 2025
A vulnerability was identified in PHPGurukul User Management System 1.0. This vulnerability... Moderate Unreviewed
CVE-2025-9302 was published Aug 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-54048 was published Aug 20, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-54726 was published Aug 20, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database