GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,810

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,656 advisories

Filter by severity

Sort by

Least recently updated

A SQL Injection vulnerability was found in /admin/edit-propertytype.php in PHPGurukul Land Record... Critical Unreviewed

CVE-2025-25388 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record... Critical Unreviewed

CVE-2025-25389 was published Feb 13, 2025

PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense... Critical Unreviewed

CVE-2025-25349 was published Feb 12, 2025

PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense... Critical Unreviewed

CVE-2025-25351 was published Feb 12, 2025

SQL Injection vulnerability in various API endpoints - offices, dashboards, etc. Apache Fineract... Critical Unreviewed

CVE-2024-32838 was published Feb 12, 2025

A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project >=... Critical Unreviewed

CVE-2025-22992 was published Feb 6, 2025

An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking... Critical Unreviewed

CVE-2024-57430 was published Feb 6, 2025

SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote... Critical Unreviewed

CVE-2020-36084 was published Feb 6, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-22699 was published Feb 4, 2025

SQL injection vulnerability in the ZimbraSyncService SOAP endpoint in Zimbra Collaboration 10.0.x... Critical Unreviewed

CVE-2025-25064 was published Feb 3, 2025

Moss v0.1.3 version has an SQL injection vulnerability that allows attackers to inject carefully... Critical Unreviewed

CVE-2024-57098 was published Feb 3, 2025

A SQL injection vulnerability exists in the front-end of the website in ZZCMS <= 2023, which can... Critical Unreviewed

CVE-2025-22957 was published Jan 31, 2025

SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to... Critical Unreviewed

CVE-2025-0929 was published Jan 31, 2025

JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The... Critical Unreviewed

CVE-2024-57665 was published Jan 30, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-24665 was published Jan 27, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-24667 was published Jan 27, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-24664 was published Jan 27, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-24612 was published Jan 27, 2025

An issue was discovered in Centreon centreon-web 24.10.x before 24.10.3, 24.04.x before 24.04.9,... Critical Unreviewed

CVE-2024-55573 was published Jan 24, 2025

A SQL Injection vulnerability exists in the login form of Online Food Ordering System v1.0. The... Critical Unreviewed

CVE-2024-57328 was published Jan 24, 2025

An issue was discovered in Centreon Web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x... Critical Unreviewed

CVE-2024-53923 was published Jan 24, 2025

SQL Injection vulnerability in the default configuration of the Logitime WebClock application <=... Critical Unreviewed

CVE-2024-55971 was published Jan 23, 2025

Synnefo Internet Management Software 2023 was discovered to contain a SQL injection vulnerability. Critical Unreviewed

CVE-2023-37777 was published Jan 22, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-23931 was published Jan 22, 2025

pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed

CVE-2023-27113 was published Jan 22, 2025

Previous 1 2 3 4 5 … 146 147 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,656 advisories