GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,763
Composer 4,750
Erlang 35
GitHub Actions 29
Go 2,323
Maven 5,608
npm 3,956
NuGet 712
pip 3,739
Pub 12
RubyGems 921
Rust 973
Swift 38

Unreviewed advisories

All unreviewed 258,306

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,684 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

The Advance Post Prefix WordPress plugin through 1.1.1 does not sanitize and escape a parameter... High Unreviewed

CVE-2024-12735 was published May 15, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2024-10864 was published May 14, 2025

Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL... High Unreviewed

CVE-2025-3834 was published May 14, 2025

Zohocorp ManageEngine ADSelfService Plus versions 6513 and prior are vulnerable to authenticated... High Unreviewed

CVE-2025-3833 was published May 14, 2025

owl-admin v3.2.2~ to v4.10.2 is vulnerable to SQL Injection in /admin-api/system/admin_menus... High Unreviewed

CVE-2025-28057 was published May 13, 2025

A vulnerability has been identified in Polarion V2310 (All versions), Polarion V2404 (All... High Unreviewed

CVE-2024-51444 was published May 13, 2025

The Relevanssi – A Better Search plugin for WordPress is vulnerable to time-based SQL Injection... High Unreviewed

CVE-2025-4396 was published May 13, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47643 was published May 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47537 was published May 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47544 was published May 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47587 was published May 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47538 was published May 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47490 was published May 7, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-47460 was published May 7, 2025

The PGS Core plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the... High Unreviewed

CVE-2025-0853 was published May 7, 2025

The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL... High Unreviewed

CVE-2025-2011 was published May 6, 2025

kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester... High Unreviewed

CVE-2025-45321 was published May 5, 2025

The Ultimate Auction Pro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’... High Unreviewed

CVE-2025-4204 was published May 2, 2025

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is... High Unreviewed

CVE-2024-13322 was published May 2, 2025

The Advance Seat Reservation Management for WooCommerce plugin for WordPress is vulnerable to SQL... High Unreviewed

CVE-2024-13344 was published May 2, 2025

SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in ... High Unreviewed

CVE-2025-44194 was published Apr 30, 2025

SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in ... High Unreviewed

CVE-2025-44193 was published Apr 30, 2025

A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of... High Unreviewed

CVE-2025-45020 was published Apr 30, 2025

A SQL injection vulnerability in manage_damage.php in Sourcecodester Computer Laboratory... High Unreviewed

CVE-2025-45956 was published Apr 29, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-39377 was published Apr 24, 2025

Previous 1 2 3 4 5 … 267 268 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,684 advisories