Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,743
Erlang
35
GitHub Actions
29
Go
2,315
Maven
5,000+
npm
3,949
NuGet
711
pip
3,729
Pub
12
RubyGems
920
Rust
964
Swift
38
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,670 advisories

Loading
The Likes and Dislikes Plugin plugin for WordPress is vulnerable to SQL Injection via the 'post'... High Unreviewed
CVE-2025-5287 was published May 28, 2025
Time-based blind SQL injection vulnerabilities in TCMAN's GIM v11. These allow an attacker to... High Unreviewed
CVE-2025-40666 was published May 26, 2025
Time-based blind SQL injection vulnerabilities in TCMAN's GIM v11. These allow an attacker to... High Unreviewed
CVE-2025-40665 was published May 26, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47671 was published May 23, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47575 was published May 23, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47478 was published May 23, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-46463 was published May 23, 2025
Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection in the OU... High Unreviewed
CVE-2025-41407 was published May 23, 2025
Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection while... High Unreviewed
CVE-2025-36527 was published May 23, 2025
While editing pages managed by MegaBIP a user with high privileges is prompted to give a... High Unreviewed
CVE-2025-3893 was published May 23, 2025
In Infoblox NETMRI before 7.6.1, authenticated users can perform SQL injection attacks. High Unreviewed
CVE-2024-52874 was published May 22, 2025
Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL... High Unreviewed
CVE-2025-3836 was published May 22, 2025
Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL... High Unreviewed
CVE-2025-41403 was published May 22, 2025
The component listed above contains a vulnerability that can be exploited by an attacker to... High Unreviewed
CVE-2025-3751 was published May 21, 2025
An unauthenticated blind SQL injection vulnerability exists in RSI Queue Management System v3.0... High Unreviewed
CVE-2025-26086 was published May 20, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39355 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39357 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-32924 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39403 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-43833 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-39370 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-48278 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-48280 was published May 19, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-48137 was published May 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47567 was published May 16, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database