GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,719
Composer 4,743
Erlang 35
GitHub Actions 29
Go 2,318
Maven 5,601
npm 3,950
NuGet 711
pip 3,730
Pub 12
RubyGems 920
Rust 965
Swift 38

Unreviewed advisories

All unreviewed 257,788

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,835 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

An unspecified SQL Injection vulnerability in Ivanti Endpoint Manager released prior to 2022 SU 5... Critical Unreviewed

CVE-2023-39336 was published Jan 9, 2024

An SQL injection vulnerability exists in the delete function of DuckDBVectorStore in run-llama... Critical Unreviewed

CVE-2025-1750 was published Jun 2, 2025

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It allows SQL... Critical Unreviewed

CVE-2022-34909 was published Feb 27, 2023

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-2812 was published May 2, 2025

PHPGURUKUL Restaurant Table Booking System using PHP and MySQL v1.0 was discovered to contain a... Critical Unreviewed

CVE-2024-51101 was published May 23, 2025

The CZ Loan Management WordPress plugin through 1.1 does not properly sanitise and escape a... Critical Unreviewed

CVE-2024-5975 was published Jul 30, 2024

The WpStickyBar WordPress plugin through 2.1.0 does not properly sanitise and escape a parameter... Critical Unreviewed

CVE-2024-5765 was published Jul 30, 2024

The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a... Critical Unreviewed

CVE-2024-6847 was published Aug 20, 2024

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-48283 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-47640 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-46539 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-46455 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-46460 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-39504 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-47599 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-39501 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31914 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31397 was published May 23, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-31056 was published May 23, 2025

2nd Order SQL injection vulnerabilities in ASPECT allow unintended access and manipulation of... Critical Unreviewed

CVE-2024-13955 was published May 22, 2025

An issue was discovered in Infoblox NETMRI before 7.6.1. Unauthenticated SQL Injection can occur. Critical Unreviewed

CVE-2025-32814 was published May 22, 2025

Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via sales-report-ds.php file. Critical Unreviewed

CVE-2022-40944 was published Oct 1, 2022

Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via bwdate-report-ds.php file. Critical Unreviewed

CVE-2022-40943 was published Oct 1, 2022

An SQL injection vulnerability issue was discovered in Sourcecodester Simple E-Learning System 1... Critical Unreviewed

CVE-2022-40872 was published Oct 7, 2022

SQL injection vulnerability in Comerzzia Backoffice: Sales Orchestrator 3.0.15. This... Critical Unreviewed

CVE-2025-40635 was published May 20, 2025

Previous 1 2 3 4 5 … 153 154 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,835 advisories