GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 22,559
Composer 4,694
Erlang 34
GitHub Actions 28
Go 2,284
Maven 5,573
npm 3,936
NuGet 708
pip 3,706
Pub 12
RubyGems 919
Rust 959
Swift 38

Unreviewed advisories

All unreviewed 256,028

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

3,813 advisories

Filter by severity

Sort by

Least recently updated

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-39481 was published May 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-32643 was published May 16, 2025

An error-based SQL Injection (SQLi) vulnerability in WebERP v4.15.2 allows attackers to execute... Critical Unreviewed

CVE-2025-46052 was published May 15, 2025

OcoMon v4.0 was discovered to contain a SQL injection vulnerability via the cod parameter at... Critical Unreviewed

CVE-2022-41391 was published Oct 14, 2022

EngineerCMS v1.02 through v2.0.5 has a SQL injection vulnerability in the /project/addproject... Critical Unreviewed

CVE-2025-44831 was published May 13, 2025

rebuild v3.9.0 through v3.9.3 has a SQL injection vulnerability in /admin/admin-cli/exec component. Critical Unreviewed

CVE-2025-28056 was published May 13, 2025

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject... Critical Unreviewed

CVE-2025-40621 was published May 6, 2025

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject... Critical Unreviewed

CVE-2025-40624 was published May 6, 2025

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject... Critical Unreviewed

CVE-2025-40620 was published May 6, 2025

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject... Critical Unreviewed

CVE-2025-40622 was published May 6, 2025

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject... Critical Unreviewed

CVE-2025-40623 was published May 6, 2025

Unrestricted file upload in TCMAN's GIM v11. This vulnerability allows an unauthenticated... Critical Unreviewed

CVE-2025-40625 was published May 6, 2025

SQL injection vulnerability in DomainsPRO 1.2. This vulnerability could allow an attacker to... Critical Unreviewed

CVE-2025-40628 was published May 13, 2025

A vulnerability has been identified in OZW672 (All versions < V6.0), OZW772 (All versions < V6.0)... Critical Unreviewed

CVE-2025-26390 was published May 13, 2025

EngineerCMS v1.02 through v.2.0.5 has a SQL injection vulnerability in the /project... Critical Unreviewed

CVE-2025-44830 was published May 12, 2025

PHPGURUKUL Vehicle Parking Management System v1.13 is vulnerable to SQL injection in the /vpms... Critical Unreviewed

CVE-2025-45885 was published May 9, 2025

Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.... Critical Unreviewed

CVE-2023-49641 was published May 13, 2025

Employee Record Management System v 1.2 is vulnerable to SQL Injection via editempprofile.php. Critical Unreviewed

CVE-2021-37782 was published Oct 28, 2022

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed

CVE-2025-47682 was published May 12, 2025

The ISOinsight from Netvision has a SQL Injection vulnerability, allowing unauthenticated remote... Critical Unreviewed

CVE-2025-4559 was published May 12, 2025

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in... Critical Unreviewed

CVE-2025-46188 was published May 9, 2025

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in... Critical Unreviewed

CVE-2025-46190 was published May 9, 2025

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in... Critical Unreviewed

CVE-2025-46189 was published May 9, 2025

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in... Critical Unreviewed

CVE-2025-46192 was published May 9, 2025

SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component... Critical Unreviewed

CVE-2025-44073 was published May 6, 2025

Previous 1 2 3 4 5 … 152 153 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

3,813 advisories