Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
22
Go
2,166
Maven
5,000+
npm
3,829
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+

2,834 advisories

Loading
The Thumbnail carousel slider plugin for WordPress is vulnerable to SQL Injection via the 'id'... Moderate Unreviewed
CVE-2019-25222 was published Mar 15, 2025
The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2025-1670 was published Mar 15, 2025
The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2025-1669 was published Mar 15, 2025
The WordPress Report Brute Force Attacks and Login Protection ReportAttacks Plugins plugin for... Moderate Unreviewed
CVE-2025-2250 was published Mar 13, 2025
Koha <= 21.11 is contains a SQL Injection vulnerability in /serials/lateissues-export.pl via the... Moderate Unreviewed
CVE-2025-22954 was published Mar 12, 2025
Pimcore Vulnerable to SQL Injection in getRelationFilterCondition Moderate
CVE-2025-27617 was published for pimcore/pimcore (Composer) Mar 11, 2025
cancan101
An improper neutralization of special elements used in an sql command ('sql injection') in... Moderate Unreviewed
CVE-2024-54026 was published Mar 11, 2025
Two improper neutralization of special elements used in an SQL Command ('SQL Injection')... Moderate Unreviewed
CVE-2024-33501 was published Mar 11, 2025
Many fields for the web configuration interface of the firmware for Mennekes Smart / Premium... Moderate Unreviewed
CVE-2025-22370 was published Mar 11, 2025
A vulnerability classified as critical has been found in ftcms 2.1. Affected is an unknown... Moderate Unreviewed
CVE-2025-2132 was published Mar 10, 2025
A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla and classified as critical.... Moderate Unreviewed
CVE-2025-2126 was published Mar 9, 2025
The Post SMTP plugin for WordPress is vulnerable to generic SQL Injection via the ‘columns’... Moderate Unreviewed
CVE-2024-13844 was published Mar 8, 2025
A vulnerability, which was classified as critical, was found in PHPGurukul Pre-School Enrollment... Moderate Unreviewed
CVE-2025-2088 was published Mar 7, 2025
The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to blind SQL Injection via the ... Moderate Unreviewed
CVE-2025-1768 was published Mar 7, 2025
The School Management System for Wordpress plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2024-12609 was published Mar 7, 2025
The Hero Maps Premium plugin for WordPress is vulnerable to SQL Injection via several AJAX... Moderate Unreviewed
CVE-2024-13781 was published Mar 7, 2025
The School Management System for Wordpress plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2024-12607 was published Mar 7, 2025
The Hero Slider - WordPress Slider Plugin plugin for WordPress is vulnerable to SQL Injection via... Moderate Unreviewed
CVE-2024-13809 was published Mar 5, 2025
The Hero Mega Menu - Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to SQL... Moderate Unreviewed
CVE-2024-13778 was published Mar 5, 2025
A vulnerability was found in PHPGurukul Student Record System 3.2. It has been declared as... Moderate Unreviewed
CVE-2025-1902 was published Mar 4, 2025
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical.... Moderate Unreviewed
CVE-2025-1903 was published Mar 4, 2025
A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as... Moderate Unreviewed
CVE-2025-1900 was published Mar 4, 2025
A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been... Moderate Unreviewed
CVE-2025-1901 was published Mar 4, 2025
The teachPress plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter of... Moderate Unreviewed
CVE-2025-1321 was published Mar 4, 2025
A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been rated as... Moderate Unreviewed
CVE-2025-1894 was published Mar 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database