GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,800
Erlang
36
GitHub Actions
29
Go
2,380
Maven
5,000+
npm
4,005
NuGet
720
pip
3,805
Pub
12
RubyGems
927
Rust
986
Swift
38
Unreviewed advisories
All unreviewed
5,000+
6,974 advisories
Filter by severity
SQL injection vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker...
High
Unreviewed
CVE-2025-40731
was published
Jun 30, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-53306
was published
Jun 27, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-53256
was published
Jun 27, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-53258
was published
Jun 27, 2025
The Owl carousel responsive plugin for WordPress is vulnerable to time-based SQL Injection via...
High
Unreviewed
CVE-2025-5590
was published
Jun 26, 2025
SQL Injection vulnerability in Student Record system Using PHP and MySQL v.3.20 allows a remote...
High
Unreviewed
CVE-2024-27685
was published
Jun 26, 2025
IBM InfoSphere Information Server 11.7 vulnerable to SQL injection. A remote attacker could send...
High
Unreviewed
CVE-2025-0966
was published
Jun 26, 2025
A SQL injection vulnerability exists in Fanwei e-cology 8.0 via the getdata.jsp endpoint. The...
High
Unreviewed
CVE-2025-34038
was published
Jun 26, 2025
A time-based blind SQL injection vulnerability was identified in the PHPGurukul Dairy Farm Shop...
High
Unreviewed
CVE-2025-51672
was published
Jun 26, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-52822
was published
Jun 20, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-52821
was published
Jun 20, 2025
SQL Injection vulnerability in pbootCMS v.3.2.5 and v.3.2.10 allows a remote attacker to obtain...
High
Unreviewed
CVE-2025-46109
was published
Jun 18, 2025
A post-auth SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could...
High
Unreviewed
CVE-2025-49218
was published
Jun 17, 2025
A SQL injection vulnerability in the Trend Micro Endpoint Encryption PolicyServer could allow an...
High
Unreviewed
CVE-2025-49211
was published
Jun 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-49854
was published
Jun 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-39486
was published
Jun 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-48118
was published
Jun 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-30562
was published
Jun 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-28972
was published
Jun 17, 2025
SQL injection vulnerability in Customer Support System v1.0. This vulnerability allows an...
High
Unreviewed
CVE-2025-40728
was published
Jun 16, 2025
The AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in...
High
Unreviewed
CVE-2025-5487
was published
Jun 14, 2025
A SQL injection vulnerability in No Boss Calendar component before 5.0.7 for Joomla was...
High
Unreviewed
CVE-2025-49468
was published
Jun 13, 2025
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft...
High
Unreviewed
CVE-2025-47172
was published
Jun 10, 2025
The inprosysmedia-likes-dislikes-post WordPress plugin through 1.0.0 does not properly sanitise...
High
Unreviewed
CVE-2025-4840
was published
Jun 10, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
High
Unreviewed
CVE-2025-47651
was published
Jun 9, 2025
ProTip!
Advisories are also available from the
GraphQL API