GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,324
Composer 4,360
Erlang 33
GitHub Actions 22
Go 2,127
Maven 5,308
npm 3,793
NuGet 683
pip 3,471
Pub 12
RubyGems 894
Rust 894
Swift 38

Unreviewed advisories

All unreviewed 244,810

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,390 advisories

Filter by severity

Sort by

Least recently updated

The LTL Freight Quotes – Estes Edition plugin for WordPress is vulnerable to SQL Injection via... High Unreviewed

CVE-2024-13488 was published Feb 15, 2025

A SQL Injection vulnerability was found in /shopping/track-orders.php in PHPGurukul Online... High Unreviewed

CVE-2025-26156 was published Feb 14, 2025

A SQL Injection vulnerability was found in /admin/aboutus.php in PHPGurukul Land Record System v1... High Unreviewed

CVE-2025-25352 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land... High Unreviewed

CVE-2025-25356 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/bwdates-reports-details.php in PHPGurukul Land... High Unreviewed

CVE-2025-25355 was published Feb 13, 2025

A SQL Injection was found in /admin/admin-profile.php in PHPGurukul Land Record System v1.0,... High Unreviewed

CVE-2025-25354 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/manage-propertytype.php in PHPGurukul Land... High Unreviewed

CVE-2025-25387 was published Feb 13, 2025

A SQL Injection vulnerability was found in /admin/contactus.php in PHPGurukul Land Record System... High Unreviewed

CVE-2025-25357 was published Feb 13, 2025

Code-projects Computer Book Store 1.0 is vulnerable to SQL Injection via PublisherID. High Unreviewed

CVE-2024-24100 was published Feb 27, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2023-32741 was published Nov 4, 2023

The PnPSCADA system, a product of SDG Technologies CC, is afflicted by a critical unauthenticated... High Unreviewed

CVE-2023-1934 was published May 12, 2023

Prolink 4G LTE Mobile Wi-Fi DL-7203E V4.0.0B05 is vulnerable to SQL Injection in in the /reqproc... High Unreviewed

CVE-2024-57238 was published Feb 3, 2025

SQL injection vulnerability found in Tailor Mangement System v.1 allows a remote attacker to... High Unreviewed

CVE-2020-36074 was published Apr 6, 2023

The LTL Freight Quotes – XPO Edition plugin for WordPress is vulnerable to SQL Injection via the ... High Unreviewed

CVE-2024-13490 was published Feb 12, 2025

The LTL Freight Quotes – Worldwide Express Edition plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-13473 was published Feb 12, 2025

The LTL Freight Quotes – For Customers of FedEx Freight plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-13480 was published Feb 12, 2025

The LTL Freight Quotes – Unishippers Edition plugin for WordPress is vulnerable to SQL Injection... High Unreviewed

CVE-2024-13477 was published Feb 12, 2025

The Small Package Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection... High Unreviewed

CVE-2024-13532 was published Feb 12, 2025

The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the ... High Unreviewed

CVE-2024-13531 was published Feb 12, 2025

The Small Package Quotes – UPS Edition plugin for WordPress is vulnerable to SQL Injection via... High Unreviewed

CVE-2024-13475 was published Feb 12, 2025

The Ebook Downloader plugin for WordPress is vulnerable to SQL Injection via the 'download'... High Unreviewed

CVE-2024-13435 was published Feb 12, 2025

Cacti through 1.2.29 allows SQL injection in the template function in host_templates.php via the... High Unreviewed

CVE-2025-26520 was published Feb 12, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-30504 was published Mar 29, 2024

The password parameter on Simple Online Mens Salon Management System (MSMS) 1.0 appears to be... High Unreviewed

CVE-2021-44600 was published Dec 24, 2021

A SolarWinds Platform SWQL Injection Vulnerability was identified in the user interface. This... High Unreviewed

CVE-2024-29001 was published Apr 18, 2024

Previous 1 2 3 4 5 … 255 256 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,390 advisories