GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,335
Erlang
31
GitHub Actions
22
Go
2,096
Maven
5,000+
npm
3,762
NuGet
678
pip
3,448
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
3,636 advisories
Filter by severity
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2025-24612
was published
Jan 27, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2025-24667
was published
Jan 27, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2025-24664
was published
Jan 27, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2025-24665
was published
Jan 27, 2025
A SQL Injection vulnerability exists in the login form of Online Food Ordering System v1.0. The...
Critical
Unreviewed
CVE-2024-57328
was published
Jan 24, 2025
An issue was discovered in Centreon centreon-web 24.10.x before 24.10.3, 24.04.x before 24.04.9,...
Critical
Unreviewed
CVE-2024-55573
was published
Jan 24, 2025
An issue was discovered in Centreon Web 24.10.x before 24.10.3, 24.04.x before 24.04.9, 23.10.x...
Critical
Unreviewed
CVE-2024-53923
was published
Jan 24, 2025
SQL Injection vulnerability in ABO.CMS version 5.8, allows remote attackers to execute arbitrary...
Critical
Unreviewed
CVE-2024-25227
was published
Mar 15, 2024
pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2023-27112
was published
Jan 22, 2025
pearProjectApi v2.8.10 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2023-27113
was published
Jan 22, 2025
SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote...
Critical
Unreviewed
CVE-2016-2386
was published
May 13, 2022
Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Eligibility...
Critical
Unreviewed
CVE-2024-24101
was published
Mar 13, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2025-23931
was published
Jan 22, 2025
WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the...
Critical
Unreviewed
CVE-2024-57031
was published
Jan 17, 2025
WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter.
Critical
Unreviewed
CVE-2024-57034
was published
Jan 17, 2025
code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via the Username parameter...
Critical
Unreviewed
CVE-2023-41014
was published
Mar 7, 2024
WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php.
Critical
Unreviewed
CVE-2024-57035
was published
Jan 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2025-22553
was published
Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-49655
was published
Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')...
Critical
Unreviewed
CVE-2024-51818
was published
Jan 21, 2025
The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated...
Critical
Unreviewed
CVE-2025-0585
was published
Jan 20, 2025
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the...
Critical
Unreviewed
CVE-2024-57768
was published
Jan 16, 2025
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to SQL Injection via...
Critical
Unreviewed
CVE-2024-1981
was published
Feb 29, 2024
The airPASS from NetVision Information has a SQL Injection vulnerability, allowing...
Critical
Unreviewed
CVE-2025-0455
was published
Jan 16, 2025
The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to time-based SQL...
Critical
Unreviewed
CVE-2024-4434
was published
May 14, 2024
ProTip!
Advisories are also available from the
GraphQL API