GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,810

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

12,767 advisories

Filter by severity

Sort by

Least recently updated

The WP Project Manager – Task, team, and project management plugin featuring kanban board and... Moderate Unreviewed

CVE-2024-13500 was published Feb 15, 2025

The LTL Freight Quotes – Estes Edition plugin for WordPress is vulnerable to SQL Injection via... High Unreviewed

CVE-2024-13488 was published Feb 15, 2025

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows... Unknown Unreviewed

CVE-2025-22208 was published Feb 15, 2025

A SQL injection vulnerability in the JS Jobs plugin versions 1.1.5-1.4.3 for Joomla allows... Unknown Unreviewed

CVE-2025-22209 was published Feb 15, 2025

A SQL Injection vulnerability was found in /bpms/index.php in Source Code and Project Beauty... Moderate Unreviewed

CVE-2025-26157 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25993 was published Feb 14, 2025

SQL Injection vulnerability in hooskcms v.1.7.1 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25991 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25994 was published Feb 14, 2025

A SQL Injection vulnerability was found in /shopping/track-orders.php in PHPGurukul Online... High Unreviewed

CVE-2025-26156 was published Feb 14, 2025

SQL Injection vulnerability in FeMiner wms 1.0 allows a remote attacker to obtain sensitive... Moderate Unreviewed

CVE-2025-25992 was published Feb 14, 2025

A SQL Injection vulnerability was found in /admin/aboutus.php in PHPGurukul Land Record System v1... High Unreviewed

CVE-2025-25352 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land... High Unreviewed

CVE-2025-25356 was published Feb 13, 2025

PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense... Critical Unreviewed

CVE-2025-25351 was published Feb 12, 2025

A SQL Injection was found in /admin/admin-profile.php in PHPGurukul Land Record System v1.0,... High Unreviewed

CVE-2025-25354 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land... High Unreviewed

CVE-2025-25355 was published Feb 13, 2025

PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense... Critical Unreviewed

CVE-2025-25349 was published Feb 12, 2025

The WP Bannerize WordPress plugin is vulnerable to authenticated SQL injection via the id... Moderate Unreviewed

CVE-2021-39351 was published May 24, 2022

A SQL Injection vulnerability was found in /admin/manage-propertytype.php in PHPGurukul Land... High Unreviewed

CVE-2025-25387 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/contactus.php in PHPGurukul Land Record System... High Unreviewed

CVE-2025-25357 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record... Critical Unreviewed

CVE-2025-25389 was published Feb 13, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2024-27956 was published Mar 21, 2024

Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via PublisherID. High Unreviewed

CVE-2024-24100 was published Feb 27, 2024

SQL Injection vulnerability in the orderGoodsDelivery() function in Niushop B2B2C V5 allows... Critical Unreviewed

CVE-2024-25248 was published Feb 27, 2024

SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code... Critical Unreviewed

CVE-2024-25422 was published Feb 29, 2024

Bit Assist plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter... Moderate Unreviewed

CVE-2025-0821 was published Feb 14, 2025

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,767 advisories