GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 25,159
Composer 5,094
Erlang 40
GitHub Actions 38
Go 2,779
Maven 6,180
npm 4,380
NuGet 770
pip 4,159
Pub 12
RubyGems 963
Rust 1,071
Swift 45

Unreviewed advisories

All unreviewed 282,804

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

15,891 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A vulnerability was found in code-projects Student File Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-14619 was published Dec 13, 2025

A security vulnerability has been detected in code-projects Prison Management System 2.0.... Moderate Unreviewed

CVE-2025-14590 was published Dec 13, 2025

The WP Directory Kit plugin for WordPress is vulnerable to SQL Injection via the 'hide_fields'... High Unreviewed

CVE-2025-13089 was published Dec 13, 2025

The افزونه پیامک ووکامرس فوق حرفه ای (جدید) payamito sms woocommerce plugin for WordPress is... High Unreviewed

CVE-2025-13077 was published Dec 13, 2025

The Design Import/Export plugin for WordPress is vulnerable to SQL Injection via XML File Import... Moderate Unreviewed

CVE-2025-14050 was published Dec 13, 2025

The URL Shortener Plugin For WordPress plugin for WordPress is vulnerable to SQL Injection via... Critical Unreviewed

CVE-2025-10738 was published Dec 13, 2025

The Filter & Grids plugin for WordPress is vulnerable to SQL Injection via the 'phrase' parameter... Moderate Unreviewed

CVE-2025-10289 was published Dec 13, 2025

A vulnerability has been found in itsourcecode COVID Tracking System 1.0. Affected is an unknown... Moderate Unreviewed

CVE-2025-14584 was published Dec 13, 2025

A vulnerability was found in itsourcecode COVID Tracking System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-14585 was published Dec 13, 2025

A weakness has been identified in itsourcecode Student Management System 1.0. The affected... Moderate Unreviewed

CVE-2025-14578 was published Dec 12, 2025

A vulnerability has been found in projectworlds Advanced Library Management System 1.0. Affected... Moderate Unreviewed

CVE-2025-14571 was published Dec 12, 2025

A flaw has been found in projectworlds Advanced Library Management System 1.0. Affected by this... Moderate Unreviewed

CVE-2025-14570 was published Dec 12, 2025

Online Shopping System Advanced 1.0 contains a SQL injection vulnerability in the payment_success... High Unreviewed

CVE-2024-58316 was published Dec 12, 2025

A security flaw has been discovered in kidaze CourseSelectionSystem up to... Moderate Unreviewed

CVE-2025-14566 was published Dec 12, 2025

A vulnerability was identified in kidaze CourseSelectionSystem up to... Moderate Unreviewed

CVE-2025-14565 was published Dec 12, 2025

The FunnelKit - Funnel Builder for WooCommerce Checkout plugin for WordPress is vulnerable to... High Unreviewed

CVE-2025-14169 was published Dec 12, 2025

The WPNakama plugin for WordPress is vulnerable to time-based SQL Injection via the 'order_by'... High Unreviewed

CVE-2025-14068 was published Dec 12, 2025

SQL Injection vulnerability exists in GroupSession Free edition prior to ver5.3.0, GroupSession... Moderate Unreviewed

CVE-2025-62192 was published Dec 12, 2025

CSZCMS 1.3.0 contains an authenticated SQL injection vulnerability in the members view... Critical Unreviewed

CVE-2024-58307 was published Dec 12, 2025

xbtitFM 4.1.18 contains an unauthenticated SQL injection vulnerability that allows remote... High Unreviewed

CVE-2024-58309 was published Dec 12, 2025

Quick.CMS 6.7 contains a SQL injection vulnerability that allows unauthenticated attackers to... Critical Unreviewed

CVE-2024-58308 was published Dec 12, 2025

Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections... Critical Unreviewed

CVE-2024-58290 was published Dec 12, 2025

Purei CMS 1.0 contains a time-based blind SQL injection vulnerability that allows attackers to... Critical Unreviewed

CVE-2024-58301 was published Dec 12, 2025

IBM Aspera Orchestrator 4.0.0 through 4.1.0 is vulnerable to SQL injection. A remote attacker... High Unreviewed

CVE-2025-13214 was published Dec 11, 2025

A weakness has been identified in code-projects Class and Exam Timetable Management 1.0. Affected... Moderate Unreviewed

CVE-2025-14537 was published Dec 11, 2025

Previous 1…4…400 Next

Previous 1 2 3 4 5 6 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

15,891 advisories