GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,352
Composer 4,362
Erlang 33
GitHub Actions 22
Go 2,134
Maven 5,313
npm 3,797
NuGet 687
pip 3,473
Pub 12
RubyGems 896
Rust 897
Swift 38

Unreviewed advisories

All unreviewed 245,291

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

12,818 advisories

Filter by severity

Sort by

Least recently updated

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-22691 was published Feb 3, 2025

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0.... Moderate Unreviewed

CVE-2025-0946 was published Feb 1, 2025

A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as... Moderate Unreviewed

CVE-2025-0944 was published Feb 1, 2025

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System... Moderate Unreviewed

CVE-2025-0945 was published Feb 1, 2025

A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared... Moderate Unreviewed

CVE-2025-0943 was published Feb 1, 2025

The MultiLoca - WooCommerce Multi Locations Inventory Management plugin for WordPress is... Moderate Unreviewed

CVE-2024-13341 was published Feb 1, 2025

EasyVirt DCScope 8.6.0 and earlier and co2Scope 1.3.0 and earlier are vulnerable to SQL Injection... High Unreviewed

CVE-2024-57587 was published Feb 1, 2025

EasyVirt DCScope <=8.6.0 and CO2Scope <=1.3.0 are vulnerable to SQL Injection. Moderate Unreviewed

CVE-2024-53354 was published Feb 1, 2025

A vulnerability was found in code-projects Job Recruitment 1.0. It has been classified as... Moderate Unreviewed

CVE-2025-0934 was published Jan 31, 2025

A SQL injection vulnerability exists in the front-end of the website in ZZCMS <= 2023, which can... Critical Unreviewed

CVE-2025-22957 was published Jan 31, 2025

A Host Header Injection vulnerability exists in CTFd 3.7.5, due to the application failing to... Moderate Unreviewed

CVE-2025-23001 was published Jan 31, 2025

SQL injection vulnerability in TeamCal Neo, version 3.8.2. This could allow an attacker to... Critical Unreviewed

CVE-2025-0929 was published Jan 31, 2025

A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0.... Moderate Unreviewed

CVE-2025-0873 was published Jan 30, 2025

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System... Moderate Unreviewed

CVE-2025-0872 was published Jan 30, 2025

The WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress plugin for WordPress is... Moderate Unreviewed

CVE-2024-13596 was published Jan 30, 2025

The VR-Frases (collect & share quotes) plugin for WordPress is vulnerable to SQL Injection via... Moderate Unreviewed

CVE-2025-0861 was published Jan 30, 2025

A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-0847 was published Jan 30, 2025

A vulnerability was found in 1000 Projects Employee Task Management System 1.0. It has been... Moderate Unreviewed

CVE-2025-0846 was published Jan 30, 2025

JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The... Critical Unreviewed

CVE-2024-57665 was published Jan 30, 2025

A vulnerability was found in needyamin Library Card System 1.0. It has been classified as... Moderate Unreviewed

CVE-2025-0843 was published Jan 30, 2025

RuoYi v4.8.0 was discovered to contain a SQL injection vulnerability via the orderby parameter at... Moderate Unreviewed

CVE-2024-57437 was published Jan 29, 2025

A vulnerability, which was classified as critical, has been found in Codezips Gym Management... Moderate Unreviewed

CVE-2025-0803 was published Jan 29, 2025

Avi Load Balancer contains an unauthenticated blind SQL Injection vulnerability which was... High Unreviewed

CVE-2025-22217 was published Jan 28, 2025

The Eventer plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the ... High Unreviewed

CVE-2024-11135 was published Jan 28, 2025

IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 is vulnerable to... Moderate Unreviewed

CVE-2023-50316 was published Jan 28, 2025

Previous 1 2 3 4 5 6 7 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

12,818 advisories