Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,324
Erlang
31
GitHub Actions
21
Go
2,087
Maven
5,000+
npm
3,751
NuGet
674
pip
3,437
Pub
12
RubyGems
892
Rust
881
Swift
37
Unreviewed advisories
All unreviewed
5,000+

13,080 advisories

Loading
The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to time-based... High Unreviewed
CVE-2024-13184 was published Jan 18, 2025
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... High Unreviewed
CVE-2025-0308 was published Jan 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23912 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23911 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23913 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23780 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-23779 was published Jan 16, 2025
Campcodes Cybercafe Management System v1.0 is vulnerable to SQL Injection in /ccms/view-user... High Unreviewed
CVE-2024-57162 was published Jan 16, 2025
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the... Critical Unreviewed
CVE-2024-57768 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... Moderate Unreviewed
CVE-2024-12615 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed
CVE-2024-12614 was published Jan 16, 2025
The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... High Unreviewed
CVE-2024-12613 was published Jan 16, 2025
The airPASS from NetVision Information has a SQL Injection vulnerability, allowing... Critical Unreviewed
CVE-2025-0455 was published Jan 16, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22785 was published Jan 15, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-22799 was published Jan 15, 2025
SQL injection in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January... High Unreviewed
CVE-2024-13162 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Low Unreviewed
CVE-2024-55593 was published Jan 14, 2025
An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2024-52969 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed
CVE-2024-35278 was published Jan 14, 2025
A improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed
CVE-2024-35275 was published Jan 14, 2025
An improper neutralization of special elements used in an sql command ('sql injection')... High Unreviewed
CVE-2023-37931 was published Jan 14, 2025
SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An... High Unreviewed
CVE-2025-20620 was published Jan 14, 2025
SAP NetWeaver AS ABAP and ABAP Platform does not check for authorization when a user executes... High Unreviewed
CVE-2025-0063 was published Jan 14, 2025
An issue in the is_column_unique component of MonetDB Server v11.49.1 allows attackers to cause a... High Unreviewed
CVE-2024-57632 was published Jan 14, 2025
An issue in the exps_bind_column component of MonetDB Server v11.49.1 allows attackers to cause a... High Unreviewed
CVE-2024-57633 was published Jan 14, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database