Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,073 advisories

Loading
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-1929 was published Aug 15, 2025
A SQL injection vulnerability in the JS Jobs plugin versions 1.3.2-1.4.4 for Joomla allows low... High Unreviewed
CVE-2025-54475 was published Aug 15, 2025
A SQLi vulnerability in DJ-Classifieds component 3.9.2-3.10.1 for Joomla was discovered. The... High Unreviewed
CVE-2025-54474 was published Aug 15, 2025
The Gestion de tarifs plugin for WordPress is vulnerable to SQL Injection via the 'tarif' and ... Moderate Unreviewed
CVE-2025-7662 was published Aug 15, 2025
A vulnerability was determined in PHPGurukul Online Shopping Portal Project 2.0. Affected by this... Moderate Unreviewed
CVE-2025-9011 was published Aug 15, 2025
A vulnerability has been found in PHPGurukul Online Shopping Portal Project 2.0. This... Moderate Unreviewed
CVE-2025-9013 was published Aug 15, 2025
A vulnerability was identified in Surbowl dormitory-management-php 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-9002 was published Aug 15, 2025
A vulnerability was determined in code-projects Online Medicine Guide 1.0. Affected is an unknown... Moderate Unreviewed
CVE-2025-8990 was published Aug 15, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-55708 was published Aug 14, 2025
A vulnerability has been found in SourceCodester Cashier Queuing System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-8973 was published Aug 14, 2025
Apache Superset has bypass of `DISALLOWED_SQL_FUNCTIONS` that allows execution of blocked SQL functions Moderate
CVE-2025-55674 was published for apache-superset (pip) Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-54678 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-54707 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-49059 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-52720 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-52820 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-52823 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-54669 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49267 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39510 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-30998 was published Aug 14, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49033 was published Aug 14, 2025
A vulnerability was found in SourceCodester COVID 19 Testing Management System 1.0. Affected by... Moderate Unreviewed
CVE-2025-8926 was published Aug 13, 2025
A vulnerability was determined in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6... Moderate Unreviewed
CVE-2025-8908 was published Aug 13, 2025
Organization Portal System developed by WellChoose has a SQL Injection vulnerability, allowing... High Unreviewed
CVE-2025-8914 was published Aug 13, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database