Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,762
Maven
5,000+
npm
4,371
NuGet
767
pip
4,141
Pub
12
RubyGems
962
Rust
1,070
Swift
45
Unreviewed advisories
All unreviewed
5,000+

15,866 advisories

Loading
A SQL Injection vulnerability exists in phpMsAdmin version 2.2 in the database_mode.php file. An... Moderate Unreviewed
CVE-2025-63948 was published Dec 18, 2025
Advantech WebAccess/SCADA  is vulnerable to SQL injection, which may allow an attacker to execute... Moderate Unreviewed
CVE-2025-46268 was published Dec 18, 2025
WBiz Desk 1.2 contains a SQL injection vulnerability that allows non-admin users to manipulate... Moderate Unreviewed
CVE-2023-53935 was published Dec 18, 2025
A SQL injection vulnerability in Kentico Xperience allows authenticated editors to inject... High Unreviewed
CVE-2021-47711 was published Dec 18, 2025
IBM watsonx Orchestrate Cartridge for IBM Cloud Pak for Data 4.8.4, 4.8.5, and 5.0.0 through 5.2... Critical Unreviewed
CVE-2025-0165 was published Dec 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-64371 was published Dec 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-60062 was published Dec 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-58951 was published Dec 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-14314 was published Dec 18, 2025
PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that... High Unreviewed
CVE-2023-53926 was published Dec 18, 2025
A security flaw has been discovered in code-projects Online Appointment Booking System 1.0. The... Moderate Unreviewed
CVE-2025-14833 was published Dec 18, 2025
Affiliate Me version 5.0.1 contains a SQL injection vulnerability in the admin.php endpoint that... High Unreviewed
CVE-2023-53917 was published Dec 18, 2025
A vulnerability was identified in itsourcecode Online Cake Ordering System 1.0. The affected... Moderate Unreviewed
CVE-2025-14832 was published Dec 18, 2025
A SQL injection vulnerability was found in the '/cts/admin/?page=zone' file of ITSourcecode COVID... High Unreviewed
CVE-2025-67285 was published Dec 17, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-68056 was published Dec 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-68053 was published Dec 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-68054 was published Dec 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-68055 was published Dec 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-67999 was published Dec 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-67962 was published Dec 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-67950 was published Dec 16, 2025
An SQL injection vulnerability has been reported to affect several QNAP operating system versions... Moderate Unreviewed
CVE-2025-62849 was published Dec 16, 2025
Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickup_id parameter that... Critical Unreviewed
CVE-2023-53877 was published Dec 15, 2025
An error-based SQL injection vulnerability exists in the Sunbird Power IQ 9.2.0 API. The... Low Unreviewed
CVE-2025-55703 was published Dec 15, 2025
SQL injection vulnerability in anirbandutta9 NEWS-BUZZ v.1.0 allows a remote attacker to execute... Moderate Unreviewed
CVE-2023-38913 was published Dec 15, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database