Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,825
Erlang
36
GitHub Actions
32
Go
2,417
Maven
5,000+
npm
4,054
NuGet
723
pip
3,845
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

7,012 advisories

Loading
The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a... High Unreviewed
CVE-2022-3849 was published Nov 28, 2022
A SQL Injection vulnerability was discovered in the normal-bwdates-reports-details.php file of... High Unreviewed
CVE-2025-45020 was published Apr 30, 2025
SQL injection vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to obtain sensitive... High Unreviewed
CVE-2024-24375 was published Mar 7, 2024
Blind SQL Injection via GridFieldSortableHeader High
CVE-2022-38148 was published for silverstripe/framework (Composer) Nov 22, 2022
The 404 Solution WordPress plugin before 2.35.8 does not properly sanitise and escape a parameter... High Unreviewed
CVE-2024-1068 was published Mar 11, 2024
The Advance Seat Reservation Management for WooCommerce plugin for WordPress is vulnerable to SQL... High Unreviewed
CVE-2024-13344 was published May 2, 2025
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is... High Unreviewed
CVE-2024-13322 was published May 2, 2025
SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in ... High Unreviewed
CVE-2025-44194 was published Apr 30, 2025
The Ultimate Auction Pro plugin for WordPress is vulnerable to SQL Injection via the ‘auction_id’... High Unreviewed
CVE-2025-4204 was published May 2, 2025
SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in ... High Unreviewed
CVE-2025-44193 was published Apr 30, 2025
An issue was discovered in Centreon centreon-bam 24.04, 23.10, 23.04, and 22.10. SQL injection... High Unreviewed
CVE-2024-45757 was published Dec 3, 2024
kashipara Online Service Management Portal V1.0 is vulnerable to SQL Injection in /osms/Requester... High Unreviewed
CVE-2025-45321 was published May 5, 2025
The WP Activity Log Premium plugin for WordPress is vulnerable to SQL Injection via the entry-... High Unreviewed
CVE-2024-2018 was published Apr 9, 2024
A SQL injection vulnerability in manage_damage.php in Sourcecodester Computer Laboratory... High Unreviewed
CVE-2025-45956 was published Apr 29, 2025
The PGS Core plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the... High Unreviewed
CVE-2025-0853 was published May 7, 2025
Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the... High Unreviewed
CVE-2021-24130 was published May 24, 2022
The Slider & Popup Builder by Depicter plugin for WordPress is vulnerable to generic SQL... High Unreviewed
CVE-2025-2011 was published May 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47460 was published May 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47538 was published May 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47490 was published May 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47587 was published May 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47544 was published May 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47537 was published May 7, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2025-47643 was published May 7, 2025
The Altra Side Menu WordPress plugin through 2.0 does not sanitize and escape a parameter before... High Unreviewed
CVE-2024-12773 was published Jan 27, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database