Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,870
Erlang
36
GitHub Actions
36
Go
2,493
Maven
5,000+
npm
4,126
NuGet
735
pip
3,943
Pub
12
RubyGems
945
Rust
1,021
Swift
39
Unreviewed advisories
All unreviewed
5,000+

15,073 advisories

Loading
A vulnerability was detected in SourceCodester Simple Forum Discussion System 1.0. This impacts... Moderate Unreviewed
CVE-2025-10100 was published Sep 8, 2025
A security flaw has been discovered in PHPGurukul User Management System 1.0. Affected is an... Moderate Unreviewed
CVE-2025-10098 was published Sep 8, 2025
A vulnerability, which was classified as critical, was found in Kehua Charging Pile Cloud... Moderate Unreviewed
CVE-2025-8347 was published Jul 31, 2025
A weakness has been identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this issue is the... Moderate Unreviewed
CVE-2025-9391 was published Aug 24, 2025
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an... Critical Unreviewed
CVE-2025-40687 was published Sep 11, 2025
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an... Critical Unreviewed
CVE-2025-40689 was published Sep 11, 2025
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an... Critical Unreviewed
CVE-2025-40690 was published Sep 11, 2025
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an... Critical Unreviewed
CVE-2025-40691 was published Sep 11, 2025
SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an... Critical Unreviewed
CVE-2025-40692 was published Sep 11, 2025
A Zabbix adminitrator can inject arbitrary SQL during the autoremoval of hosts by inserting... High Unreviewed
CVE-2025-27240 was published Sep 12, 2025
NUP Pro developed by NewType Infortech has a SQL Injection vulnerability, allowing... Critical Unreviewed
CVE-2025-10266 was published Sep 12, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2023-6436 was published Jan 2, 2024
The The Events Calendar plugin for WordPress is vulnerable to time-based SQL Injection via the ‘s... High Unreviewed
CVE-2025-9807 was published Sep 12, 2025
A vulnerability was found in TDuckCloud tduck-platform 5.1 and classified as critical. This issue... Moderate Unreviewed
CVE-2025-7888 was published Jul 20, 2025
A vulnerability was identified in deepakmisal24 Chemical Inventory Management System up to 1.0.... Moderate Unreviewed
CVE-2025-9758 was published Sep 11, 2025
A vulnerability was identified in Surbowl dormitory-management-php 1.0. This affects an unknown... Moderate Unreviewed
CVE-2025-9002 was published Aug 15, 2025
The Coupon API plugin for WordPress is vulnerable to SQL Injection via the ‘log_duration’... Moderate Unreviewed
CVE-2025-8692 was published Sep 11, 2025
The Smartcat Translator for WPML plugin for WordPress is vulnerable to time-based SQL Injection... Moderate Unreviewed
CVE-2025-9451 was published Sep 11, 2025
The All in one Minifier plugin for WordPress is vulnerable to SQL Injection via the 'post_id'... High Unreviewed
CVE-2025-9073 was published Sep 11, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41375 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41376 was published Aug 1, 2025
The CatFolders – Tame Your WordPress Media Library by Category plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-9776 was published Sep 11, 2025
An SQL injection vulnerability has been identified in the "ID" attribute of the SAML response... Critical Unreviewed
CVE-2025-9943 was published Sep 10, 2025
A vulnerability has been found in itsourcecode Online Discussion Forum 1.0. This affects an... Moderate Unreviewed
CVE-2025-10033 was published Sep 6, 2025
pREST has a Systemic SQL Injection Vulnerability Critical
CVE-2025-58450 was published for github.com/prest/prest/v2 (Go) Sep 8, 2025
v1ktor0t
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database