Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,331
Erlang
31
GitHub Actions
21
Go
2,093
Maven
5,000+
npm
3,756
NuGet
678
pip
3,443
Pub
12
RubyGems
892
Rust
882
Swift
37
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

12,614 advisories

Loading
SQL injection vulnerability in the UDDI server in SAP NetWeaver J2EE Engine 7.40 allows remote... Critical Unreviewed
CVE-2016-2386 was published May 13, 2022
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2024-57769 was published Jan 16, 2025
Code-projects Scholars Tracking System 1.0 is vulnerable to SQL Injection under Eligibility... Critical Unreviewed
CVE-2024-24101 was published Mar 13, 2024
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed
CVE-2025-23686 was published Jan 22, 2025
A vulnerability classified as critical has been found in code-projects Online Shoe Store 1.0.... Moderate Unreviewed
CVE-2025-0205 was published Jan 4, 2025
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2024-57770 was published Jan 16, 2025
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the... High Unreviewed
CVE-2024-57775 was published Jan 16, 2025
A vulnerability was found in code-projects Student Management System 1.0. It has been declared as... Moderate Unreviewed
CVE-2025-0203 was published Jan 4, 2025
A vulnerability was found in code-projects Online Shoe Store 1.0. It has been rated as critical.... Moderate Unreviewed
CVE-2025-0204 was published Jan 4, 2025
The Pods – Custom Content Types and Fields plugin for WordPress is vulnerable to SQL Injection... High Unreviewed
CVE-2023-6967 was published Apr 9, 2024
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23910 was published Jan 22, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-23931 was published Jan 22, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23784 was published Jan 22, 2025
The GamiPress – Gamification plugin to reward points, achievements, badges & ranks in WordPress... High Unreviewed
CVE-2024-13496 was published Jan 22, 2025
The WP-Polls plugin for WordPress is vulnerable to SQL Injection via COOKIE in all versions up to... Moderate Unreviewed
CVE-2024-13426 was published Jan 22, 2025
WeGIA < 3.2.0 is vulnerable to SQL Injection in /funcionario/remuneracao.php via the... Critical Unreviewed
CVE-2024-57031 was published Jan 17, 2025
WeGIA < 3.2.0 is vulnerable to SQL Injection in query_geracao_auto.php via the query parameter. Critical Unreviewed
CVE-2024-57034 was published Jan 17, 2025
code-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via the Username parameter... Critical Unreviewed
CVE-2023-41014 was published Mar 7, 2024
WeGIA v3.2.0 is vulnerable to SQL Injection viathe nextPage parameter in /controle/control.php. Critical Unreviewed
CVE-2024-57035 was published Jan 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-51818 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-49666 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22553 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22710 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-49655 was published Jan 21, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22716 was published Jan 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database