Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,383
Erlang
33
GitHub Actions
22
Go
2,141
Maven
5,000+
npm
3,803
NuGet
687
pip
3,479
Pub
12
RubyGems
897
Rust
898
Swift
38
Unreviewed advisories
All unreviewed
5,000+

13,360 advisories

Loading
A SQL injection vulnerability in the JoomShopping component versions 1.0.0-1.4.3 for Joomla... Unknown Unreviewed
CVE-2025-22211 was published Feb 26, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26974 was published Feb 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-26971 was published Feb 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26943 was published Feb 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-26946 was published Feb 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-26915 was published Feb 25, 2025
The Dell Secure Connect Gateway (SCG) Application and Appliance, versions prior to 5.28, contains... Low Unreviewed
CVE-2024-51539 was published Feb 25, 2025
The Yawave plugin for WordPress is vulnerable to SQL Injection via the 'lbid' parameter in all... High Unreviewed
CVE-2025-1648 was published Feb 25, 2025
A SQL injection vulnerability in the Hikashop component versions 3.3.0-5.1.4 for Joomla allows... High Unreviewed
CVE-2025-22210 was published Feb 25, 2025
SQL Injection vulnerability in SeaCMS v.13.2 and before allows a remote attacker to execute... Critical Unreviewed
CVE-2025-22974 was published Feb 25, 2025
NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL... Critical Unreviewed
CVE-2024-53544 was published Feb 25, 2025
NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL... Moderate Unreviewed
CVE-2024-53543 was published Feb 25, 2025
Moodle has a SQL injection risk in course search module list filter High
CVE-2025-26533 was published for moodle/moodle (Composer) Feb 24, 2025
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2024-54820 was published Feb 24, 2025
SQL injection in SLIMS v.9.6.1 allows a remote attacker to escalate privileges via the month... High Unreviewed
CVE-2025-26200 was published Feb 24, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-27312 was published Feb 24, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-27297 was published Feb 24, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-12918 was published Feb 24, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-12916 was published Feb 24, 2025
Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail... Critical Unreviewed
CVE-2025-24490 was published Feb 24, 2025
The LTL Freight Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection... High Unreviewed
CVE-2024-13474 was published Feb 22, 2025
Leantime allows Cross Site Scripting (XSS) and SQL Injection (SQLi) High
GHSA-v4q9-437p-mhpg was published for leantime/leantime (Composer) Feb 21, 2025
0xROI
SQL Injection vulnerability in PbootCMS 1.4.1 in parsing if statements in templates, resulting in... Moderate Unreviewed
CVE-2020-19248 was published Feb 21, 2025
A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects... Low Unreviewed
CVE-2025-25878 was published Feb 21, 2025
A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects... Low Unreviewed
CVE-2025-25877 was published Feb 21, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database