GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,807
Composer 4,757
Erlang 35
GitHub Actions 29
Go 2,328
Maven 5,624
npm 3,965
NuGet 712
pip 3,745
Pub 12
RubyGems 921
Rust 974
Swift 38

Unreviewed advisories

All unreviewed 258,955

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,851 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40656 was published Jun 10, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40654 was published Jun 10, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40657 was published Jun 10, 2025

A SQL injection vulnerability has been found in DM Corporative CMS. This vulnerability allows an... Critical Unreviewed

CVE-2025-40655 was published Jun 10, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-47608 was published Jun 9, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-48141 was published Jun 9, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-48122 was published Jun 9, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-24767 was published Jun 9, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31059 was published Jun 9, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31424 was published Jun 9, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-48281 was published Jun 9, 2025

The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to SQL... Critical Unreviewed

CVE-2024-3549 was published Jun 11, 2024

An issue was discovered in GTB Central Console 15.17.1-30814.NG. The method setTermsHashAction at... Critical Unreviewed

CVE-2024-22108 was published Feb 2, 2024

Weaver Ecology v9.* was discovered to contain a SQL injection vulnerability via the component ... Critical Unreviewed

CVE-2024-48072 was published Nov 19, 2024

The Simple Video Directory WordPress plugin before 1.4.3 does not properly sanitise and escape a... Critical Unreviewed

CVE-2024-6809 was published May 15, 2025

Improper neutralization of input provided by an unauthorized user into changes__reference_id... Critical Unreviewed

CVE-2025-4568 was published Jun 5, 2025

The File Provider WordPress plugin through 1.2.3 does not properly sanitise and escape a... Critical Unreviewed

CVE-2025-4578 was published Jun 4, 2025

An unspecified SQL Injection vulnerability in Ivanti Endpoint Manager released prior to 2022 SU 5... Critical Unreviewed

CVE-2023-39336 was published Jan 9, 2024

An SQL injection vulnerability exists in the delete function of DuckDBVectorStore in run-llama... Critical Unreviewed

CVE-2025-1750 was published Jun 2, 2025

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It allows SQL... Critical Unreviewed

CVE-2022-34909 was published Feb 27, 2023

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-2812 was published May 2, 2025

PHPGURUKUL Restaurant Table Booking System using PHP and MySQL v1.0 was discovered to contain a... Critical Unreviewed

CVE-2024-51101 was published May 23, 2025

The CZ Loan Management WordPress plugin through 1.1 does not properly sanitise and escape a... Critical Unreviewed

CVE-2024-5975 was published Jul 30, 2024

The WpStickyBar WordPress plugin through 2.1.0 does not properly sanitise and escape a parameter... Critical Unreviewed

CVE-2024-5765 was published Jul 30, 2024

The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a... Critical Unreviewed

CVE-2024-6847 was published Aug 20, 2024

Previous 1 2 3 4 5 … 154 155 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,851 advisories