Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
49
GitHub Actions
49
Go
3,405
Maven
5,000+
npm
5,000+
NuGet
882
pip
4,641
Pub
13
RubyGems
1,026
Rust
1,209
Swift
53
Unreviewed advisories
All unreviewed
5,000+

16,703 advisories

Loading
A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some... Moderate Unreviewed
CVE-2026-5034 was published Mar 29, 2026
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... High Unreviewed
CVE-2026-30529 was published Mar 27, 2026
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... Critical Unreviewed
CVE-2026-30530 was published Mar 27, 2026
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... High Unreviewed
CVE-2026-30531 was published Mar 27, 2026
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in admin... High Unreviewed
CVE-2026-30534 was published Mar 27, 2026
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... Critical Unreviewed
CVE-2026-30533 was published Mar 27, 2026
A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... Critical Unreviewed
CVE-2026-30532 was published Mar 27, 2026
Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin.... High Unreviewed
CVE-2026-24031 was published Mar 27, 2026
Spring AI has a Cypher Injection vulnerability in Neo4jVectorFilterExpressionConverter High
CVE-2026-22743 was published for org.springframework.ai:spring-ai-neo4j-store (Maven) Mar 27, 2026
Daylight Studio FuelCMS v1.5.2 was discovered to contain a SQL injection vulnerability via the ... High Unreviewed
CVE-2026-30463 was published Mar 26, 2026
AVideo has SQL Injection in category.php fixCleanTitle() via Unparameterized clean_title and id Variables High
CVE-2026-33770 was published for wwbn/avideo (Composer) Mar 26, 2026
athuljayaram Credited to athuljayaram
AVideo has SQL Injection via Partial Prepared Statement — videos_id Concatenated Directly into Query High
CVE-2026-33767 was published for wwbn/avideo (Composer) Mar 26, 2026
athuljayaram Credited to athuljayaram
n8n has SQL Injection in Data Table Node via orderByColumn Expression High
CVE-2026-33713 was published for n8n (npm) Mar 26, 2026
CodeByMoriarty Credited to CodeByMoriarty
HCL Aftermarket DPC is affected by SQL Injection which allows attacker to exploit this... High Unreviewed
CVE-2025-55262 was published Mar 26, 2026
The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is vulnerable to... High Unreviewed
CVE-2026-2511 was published Mar 26, 2026
School Management System CMS 1.0 contains an SQL injection vulnerability in the admin login... High Unreviewed
CVE-2018-25201 was published Mar 26, 2026
Wecodex Hotel CMS 1.0 contains an SQL injection vulnerability in the admin login functionality... High Unreviewed
CVE-2018-25195 was published Mar 26, 2026
Wecodex Restaurant CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated... High Unreviewed
CVE-2018-25185 was published Mar 26, 2026
Online Store System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated... High Unreviewed
CVE-2018-25203 was published Mar 26, 2026
Shipping System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated... High Unreviewed
CVE-2018-25183 was published Mar 26, 2026
Online Quiz Maker 1.0 contains SQL injection vulnerabilities in the catid and usern parameters... High Unreviewed
CVE-2018-25207 was published Mar 26, 2026
ASP.NET jVideo Kit 1.0 contains an SQL injection vulnerability that allows unauthenticated... High Unreviewed
CVE-2018-25205 was published Mar 26, 2026
Library CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to... High Unreviewed
CVE-2018-25204 was published Mar 26, 2026
OpenBiz Cubi Lite 3.0.8 contains a SQL injection vulnerability in the login form that allows... High Unreviewed
CVE-2018-25209 was published Mar 26, 2026
SAT CFDI 3.3 contains an SQL injection vulnerability that allows attackers to manipulate database... High Unreviewed
CVE-2018-25202 was published Mar 26, 2026
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database