GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,680

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

6,318 advisories

Filter by severity

Sort by

Least recently updated

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to time-based... High Unreviewed

CVE-2024-13184 was published Jan 18, 2025

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... High Unreviewed

CVE-2025-0308 was published Jan 18, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-23912 was published Jan 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-23911 was published Jan 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-23913 was published Jan 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-23780 was published Jan 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-23779 was published Jan 16, 2025

Campcodes Cybercafe Management System v1.0 is vulnerable to SQL Injection in /ccms/view-user... High Unreviewed

CVE-2024-57162 was published Jan 16, 2025

The Passwords Manager plugin for WordPress is vulnerable to unauthorized modification of data due... High Unreviewed

CVE-2024-12614 was published Jan 16, 2025

The Passwords Manager plugin for WordPress is vulnerable to SQL Injection via the $wpdb->prefix... High Unreviewed

CVE-2024-12613 was published Jan 16, 2025

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed

CVE-2025-22799 was published Jan 15, 2025

SQL injection in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January... High Unreviewed

CVE-2024-13162 was published Jan 14, 2025

An improper neutralization of special elements used in an sql command ('sql injection')... High Unreviewed

CVE-2023-37931 was published Jan 14, 2025

SQL Injection vulnerability exists in STEALTHONE D220/D340 provided by Y'S corporation. An... High Unreviewed

CVE-2025-20620 was published Jan 14, 2025

SAP NetWeaver AS ABAP and ABAP Platform does not check for authorization when a user executes... High Unreviewed

CVE-2025-0063 was published Jan 14, 2025

An issue in the is_column_unique component of MonetDB Server v11.49.1 allows attackers to cause a... High Unreviewed

CVE-2024-57632 was published Jan 14, 2025

An issue in the exps_bind_column component of MonetDB Server v11.49.1 allows attackers to cause a... High Unreviewed

CVE-2024-57633 was published Jan 14, 2025

An issue in the exp_copy component of MonetDB Server v11.49.1 allows attackers to cause a Denial... High Unreviewed

CVE-2024-57634 was published Jan 14, 2025

An issue in the itc_sample_row_check component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57636 was published Jan 14, 2025

An issue in the chash_array component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57635 was published Jan 14, 2025

An issue in the dfe_unit_gb_dependant component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57637 was published Jan 14, 2025

An issue in the sqlexp component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57641 was published Jan 14, 2025

An issue in the dc_add_int component of openlink virtuoso-opensource v7.2.11 allows attackers to... High Unreviewed

CVE-2024-57640 was published Jan 14, 2025

An issue in the dfe_body_copy component of openlink virtuoso-opensource v7.2.11 allows attackers... High Unreviewed

CVE-2024-57638 was published Jan 14, 2025

An issue in the itc_set_param_row component of openlink virtuoso-opensource v7.2.11 allows... High Unreviewed

CVE-2024-57648 was published Jan 14, 2025

Previous 1 2 3 4 5 … 252 253 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,318 advisories