Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

14,850 advisories

Loading
The FileBird – WordPress Media Library Folders & File Manager plugin for WordPress is vulnerable... Moderate Unreviewed
CVE-2025-6986 was published Aug 6, 2025
The CleverReach® WP plugin for WordPress is vulnerable to time-based SQL Injection via the ‘title... High Unreviewed
CVE-2025-7036 was published Aug 6, 2025
A Boolean-based SQL injection vulnerability was discovered in Axelor 5.2.4 via the _domain... Critical Unreviewed
CVE-2025-50341 was published Aug 4, 2025
Austrian Archaeological Institute (AI) OpenAtlas v8.11.0 as discovered to contain a SQL injection... Moderate Unreviewed
CVE-2025-51535 was published Aug 4, 2025
The ADOdb sqlite3 driver allows SQL injection Critical
CVE-2025-54119 was published for adodb/adodb-php (Composer) Aug 4, 2025
mrcnpp dregad
An authenticated SQL injection vulnerability exists in OpenEMR ≤ 4.1.1 Patch 14 that allows a low... High Unreviewed
CVE-2013-10044 was published Aug 1, 2025
A SQL Injection vulnerability exists in the takeassessment2.php file of CloudClassroom-PHP... Moderate Unreviewed
CVE-2025-50868 was published Aug 1, 2025
Saurus CMS Community Edition since commit d886e5b0 (2010-04-23) is vulnerable to a SQL Injection... Critical Unreviewed
CVE-2025-52390 was published Aug 1, 2025
SQL Injection vulnerability in Restaurant Order System 1.0 allows a local attacker to obtain... High Unreviewed
CVE-2025-52327 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41376 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41375 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41374 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... Critical Unreviewed
CVE-2025-41370 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... Critical Unreviewed
CVE-2025-41371 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41372 was published Aug 1, 2025
A SQL injection vulnerability has been found in Gandia Integra Total of TESI from version 2.1... High Unreviewed
CVE-2025-41373 was published Aug 1, 2025
Sielox AnyWare v2.1.2 was discovered to contain a SQL injection vulnerability via the email... Moderate Unreviewed
CVE-2024-34327 was published Jul 31, 2025
A SQL Injection vulnerability exists in the takeassessment2.php endpoint of the CloudClassroom... Moderate Unreviewed
CVE-2025-50867 was published Jul 31, 2025
A vulnerability exists in OAstium VoIP PBX astium-confweb-2.1-25399 and earlier, where improper... Critical Unreviewed
CVE-2013-10043 was published Jul 31, 2025
An unauthenticated SQL injection vulnerability exists in the Kloxo web hosting control panel ... Critical Unreviewed
CVE-2014-125123 was published Jul 31, 2025
An unauthenticated SQL injection vulnerability exists in Kimai version 0.9.2.x via the db_restore... Critical Unreviewed
CVE-2013-10033 was published Jul 31, 2025
Rocket Software Rocket Zena 4.4.1.26 is vulnerable to SQL Injection via the filter parameter. High Unreviewed
CVE-2024-45955 was published Jul 30, 2025
The Smart Slider 3 plugin for WordPress is vulnerable to time-based SQL Injection via the ... Moderate Unreviewed
CVE-2025-6348 was published Jul 30, 2025
Piwigo 13.8.0 and below is vulnerable to SQL Injection in the parameters max_level and... Moderate Unreviewed
CVE-2024-43018 was published Jul 29, 2025
Bacula-web SQL Injection Vulnerability High
CVE-2025-45346 was published for bacula-web/bacula-web (Composer) Jul 29, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database