GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 28,407
Composer 5,538
Erlang 49
GitHub Actions 49
Go 3,405
Maven 6,358
npm 5,578
NuGet 882
pip 4,641
Pub 13
RubyGems 1,026
Rust 1,209
Swift 53

Unreviewed advisories

All unreviewed 296,329

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

16,021 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

** UNSUPPORTED WHEN ASSIGNED ** Focalboard version 8.0 fails to sanitize category IDs before... High Unreviewed

CVE-2026-25773 was published Apr 3, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... High Unreviewed

CVE-2026-33614 was published Apr 2, 2026

An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in... Critical Unreviewed

CVE-2026-33615 was published Apr 2, 2026

An unauthenticated remote attacker can exploit an unauthenticated blind SQL Injection... High Unreviewed

CVE-2026-33616 was published Apr 2, 2026

pandas-ai v3.0.0 was discovered to contain a SQL injection vulnerability via the pandasai.agent... High Unreviewed

CVE-2026-30273 was published Apr 1, 2026

Improperly built order clauses lead to a SQL injection vulnerability in the articles webservice... Moderate Unreviewed

CVE-2026-21630 was published Apr 1, 2026

IBM Storage Protect Server 8.2.0 IBM Storage Protect Plus Server is vulnerable to SQL injection.... High Unreviewed

CVE-2025-13855 was published Apr 1, 2026

The Booking for Appointments and Events Calendar - Amelia plugin for WordPress is vulnerable to... Moderate Unreviewed

CVE-2026-4668 was published Apr 1, 2026

A Blind SQL Injection vulnerability exists in SourceCodester Loan Management System v1.0. The... Moderate Unreviewed

CVE-2026-30520 was published Mar 31, 2026

SQL inyection (SQLi) vulnerability in Umami Software web application through an improperly... Critical Unreviewed

CVE-2026-4317 was published Mar 31, 2026

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the... High Unreviewed

CVE-2026-33643 was published Mar 30, 2026

SQL Injection vulnerability in SchemaHero 0.23.0 via the column parameter to the columnAsInsert... High Unreviewed

CVE-2026-29953 was published Mar 30, 2026

A vulnerability has been found in code-projects Accounting System 1.0. This affects an unknown... Moderate Unreviewed

CVE-2026-5035 was published Mar 29, 2026

A vulnerability was detected in code-projects Accounting System 1.0. Affected by this... Moderate Unreviewed

CVE-2026-5033 was published Mar 29, 2026

A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some... Moderate Unreviewed

CVE-2026-5034 was published Mar 29, 2026

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... High Unreviewed

CVE-2026-30529 was published Mar 27, 2026

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... Critical Unreviewed

CVE-2026-30530 was published Mar 27, 2026

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... High Unreviewed

CVE-2026-30531 was published Mar 27, 2026

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in admin... High Unreviewed

CVE-2026-30534 was published Mar 27, 2026

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... Critical Unreviewed

CVE-2026-30533 was published Mar 27, 2026

A SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the... Critical Unreviewed

CVE-2026-30532 was published Mar 27, 2026

Dovecot SQL based authentication can be bypassed when auth_username_chars is cleared by admin.... High Unreviewed

CVE-2026-24031 was published Mar 27, 2026

Daylight Studio FuelCMS v1.5.2 was discovered to contain a SQL injection vulnerability via the ... High Unreviewed

CVE-2026-30463 was published Mar 26, 2026

HCL Aftermarket DPC is affected by SQL Injection which allows attacker to exploit this... High Unreviewed

CVE-2025-55262 was published Mar 26, 2026

The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is vulnerable to... High Unreviewed

CVE-2026-2511 was published Mar 26, 2026

Previous1…400 Next

Previous 1 2 3 4 5 … 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

16,021 advisories