Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,688
Erlang
34
GitHub Actions
26
Go
2,274
Maven
5,000+
npm
3,930
NuGet
706
pip
3,696
Pub
12
RubyGems
919
Rust
955
Swift
38
Unreviewed advisories
All unreviewed
5,000+

4,022 advisories

Loading
Seacms <13.3 is vulnerable to SQL Injection in admin_pay.php. Critical Unreviewed
CVE-2025-25520 was published Feb 26, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26974 was published Feb 25, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-26943 was published Feb 25, 2025
NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 was discovered to contain a SQL... Critical Unreviewed
CVE-2024-53544 was published Feb 25, 2025
SQL Injection vulnerability in SeaCMS v.13.2 and before allows a remote attacker to execute... Critical Unreviewed
CVE-2025-22974 was published Feb 25, 2025
Seacms <=13.3 is vulnerable to SQL Injection in admin_members.php. Critical Unreviewed
CVE-2025-25513 was published Feb 25, 2025
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection... Critical Unreviewed
CVE-2024-54820 was published Feb 24, 2025
Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail... Critical Unreviewed
CVE-2025-24490 was published Feb 24, 2025
A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2025-1134 was published Feb 19, 2025
A vulnerability exists in ChurchCRM 5.13.0. and prior that allows an attacker to execute... Critical Unreviewed
CVE-2025-1135 was published Feb 19, 2025
A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2025-1133 was published Feb 19, 2025
A time-based blind SQL Injection vulnerability exists in the ChurchCRM 5.13.0 and prior... Critical Unreviewed
CVE-2025-1132 was published Feb 19, 2025
A time-based SQL injection vulnerability in the login page of BoardRoom Limited Dividend... Critical Unreviewed
CVE-2024-55460 was published Feb 18, 2025
A vulnerability exists in ChurchCRM 5.13.0 and prior that allows an attacker to execute arbitrary... Critical Unreviewed
CVE-2025-1023 was published Feb 18, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22290 was published Feb 17, 2025
A SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record... Critical Unreviewed
CVE-2025-25389 was published Feb 13, 2025
A SQL Injection vulnerability was found in /admin/edit-propertytype.php in PHPGurukul Land Record... Critical Unreviewed
CVE-2025-25388 was published Feb 13, 2025
PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense... Critical Unreviewed
CVE-2025-25351 was published Feb 12, 2025
PHPGurukul Daily Expense Tracker System v1.1 is vulnerable to SQL Injection in /dets/add-expense... Critical Unreviewed
CVE-2025-25349 was published Feb 12, 2025
SQL Injection vulnerability in various API endpoints - offices, dashboards, etc. Apache Fineract... Critical Unreviewed
CVE-2024-32838 was published Feb 12, 2025
A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project >=... Critical Unreviewed
CVE-2025-22992 was published Feb 6, 2025
An SQL injection vulnerability in the pjActionGetUser function of PHPJabbers Cinema Booking... Critical Unreviewed
CVE-2024-57430 was published Feb 6, 2025
SQL Injection vulnerability in SourceCodester Responsive E-Learning System 1.0 allows remote... Critical Unreviewed
CVE-2020-36084 was published Feb 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2025-22699 was published Feb 4, 2025
SQL injection vulnerability in the ZimbraSyncService SOAP endpoint in Zimbra Collaboration 10.0.x... Critical Unreviewed
CVE-2025-25064 was published Feb 3, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database