Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,750
Erlang
35
GitHub Actions
29
Go
2,323
Maven
5,000+
npm
3,956
NuGet
712
pip
3,739
Pub
12
RubyGems
921
Rust
973
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,684 advisories

Loading
An SQL injection vulnerability has been reported to affect Qsync Central. If exploited, the... High Unreviewed
CVE-2025-29892 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49327 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49326 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49421 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49328 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49315 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49323 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-49263 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-30989 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2023-26003 was published Jun 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-26590 was published Jun 6, 2025
Foxcms v1.25 has a SQL time injection in the $_POST['dbname'] parameter of installdb.php. High Unreviewed
CVE-2025-46154 was published Jun 3, 2025
A time-based SQL injection vulnerability exists in mydetailsstudent.php in the CloudClassroom PHP... High Unreviewed
CVE-2024-57459 was published Jun 2, 2025
SQL injection vulnerability in the registrationform endpoint of CloudClassroom-PHP-Project v1.0.... High Unreviewed
CVE-2025-45542 was published Jun 2, 2025
The Likes and Dislikes Plugin plugin for WordPress is vulnerable to SQL Injection via the 'post'... High Unreviewed
CVE-2025-5287 was published May 28, 2025
Time-based blind SQL injection vulnerabilities in TCMAN's GIM v11. These allow an attacker to... High Unreviewed
CVE-2025-40666 was published May 26, 2025
Time-based blind SQL injection vulnerabilities in TCMAN's GIM v11. These allow an attacker to... High Unreviewed
CVE-2025-40665 was published May 26, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47671 was published May 23, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47575 was published May 23, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47478 was published May 23, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-46463 was published May 23, 2025
Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection while... High Unreviewed
CVE-2025-36527 was published May 23, 2025
Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection in the OU... High Unreviewed
CVE-2025-41407 was published May 23, 2025
While editing pages managed by MegaBIP a user with high privileges is prompted to give a... High Unreviewed
CVE-2025-3893 was published May 23, 2025
In Infoblox NETMRI before 7.6.1, authenticated users can perform SQL injection attacks. High Unreviewed
CVE-2024-52874 was published May 22, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database