GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
221 advisories
SQL injection in ADOdb PostgreSQL driver pg_insert_id() method
Critical
CVE-2025-46337
was published
for
adodb/adodb-php
(Composer)
May 1, 2025
org.xwiki.platform:xwiki-platform-rest-server allows SQL injection in query endpoint of REST API
Critical
CVE-2025-32969
was published
for
org.xwiki.platform:xwiki-platform-rest-server
(Maven)
Apr 23, 2025
llama-index-packs-finchat SQL Injection vulnerability
Critical
CVE-2024-12909
was published
for
llama-index-packs-finchat
(pip)
Mar 20, 2025
Navidrome has Multiple SQL Injections and ORM Leak
Critical
CVE-2024-47062
was published
for
github.com/navidrome/navidrome
(Go)
Sep 20, 2024
pREST vulnerable to jwt bypass + sql injection
Critical
GHSA-wm25-j4gw-6vr3
was published
for
github.com/prest/prest
(Go)
Jul 30, 2024
Admidio has Blind SQL Injection in ecard_send.php
Critical
CVE-2024-37906
was published
for
admidio/admidio
(Composer)
Jul 29, 2024
1Panel has an SQL injection issue related to the orderBy clause
Critical
CVE-2024-39907
was published
for
github.com/1Panel-dev/1Panel
(Go)
Jul 18, 2024
ProTip!
Advisories are also available from the
GraphQL API