Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,457
Erlang
33
GitHub Actions
22
Go
2,154
Maven
5,000+
npm
3,818
NuGet
693
pip
3,496
Pub
12
RubyGems
902
Rust
903
Swift
38
Unreviewed advisories
All unreviewed
5,000+

13,428 advisories

Loading
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to SQL... High Unreviewed
CVE-2025-1323 was published Mar 8, 2025
The Post SMTP plugin for WordPress is vulnerable to generic SQL Injection via the ‘columns’... Moderate Unreviewed
CVE-2024-13844 was published Mar 8, 2025
The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to blind SQL Injection via the ... Moderate Unreviewed
CVE-2025-1768 was published Mar 7, 2025
The School Management System for Wordpress plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2024-12609 was published Mar 7, 2025
The Hero Maps Premium plugin for WordPress is vulnerable to SQL Injection via several AJAX... Moderate Unreviewed
CVE-2024-13781 was published Mar 7, 2025
The School Management System for Wordpress plugin for WordPress is vulnerable to SQL Injection... Moderate Unreviewed
CVE-2024-12607 was published Mar 7, 2025
The CURCY - WooCommerce Multi Currency - Currency Switcher plugin for WordPress is vulnerable to... High Unreviewed
CVE-2024-13320 was published Mar 7, 2025
crmeb CRMEB-KY v5.4.0 and before has a SQL Injection vulnerability at getRead() in /system... Critical Unreviewed
CVE-2025-25763 was published Mar 6, 2025
A SQL Injection vulnerability has been identified in EPICOR Prophet 21 (P21) up to 23.2.5232.... High Unreviewed
CVE-2024-42844 was published Mar 6, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-12144 was published Mar 6, 2025
A SQL injection vulnerability in the ConvertForms component versions 1.0.0-1.0.0 - 4.4.9 for... Low Unreviewed
CVE-2025-22212 was published Mar 5, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-12097 was published Mar 5, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... Critical Unreviewed
CVE-2024-13147 was published Mar 5, 2025
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction &... High Unreviewed
CVE-2025-1702 was published Mar 5, 2025
The Hero Slider - WordPress Slider Plugin plugin for WordPress is vulnerable to SQL Injection via... Moderate Unreviewed
CVE-2024-13809 was published Mar 5, 2025
The Hero Mega Menu - Responsive WordPress Menu Plugin plugin for WordPress is vulnerable to SQL... Moderate Unreviewed
CVE-2024-13778 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923... Critical Unreviewed
CVE-2025-27659 was published Mar 5, 2025
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.1002 Application 20.0... Critical Unreviewed
CVE-2025-27640 was published Mar 5, 2025
yshopmall <=v1.9.0 is vulnerable to SQL Injection in the image listing interface. High Unreviewed
CVE-2025-25426 was published Mar 5, 2025
A SQL injection vulnerability exists in mysiteforme versions prior to 2025.01.1. Critical Unreviewed
CVE-2025-26136 was published Mar 4, 2025
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')... High Unreviewed
CVE-2024-9149 was published Mar 4, 2025
Unauthenticated SQL injection vulnerability in Uniguest Tripleplay before 24.2.1 allows remote... Critical Unreviewed
CVE-2024-50706 was published Mar 4, 2025
A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0 and classified as... Moderate Unreviewed
CVE-2025-1900 was published Mar 4, 2025
A vulnerability was found in PHPGurukul Student Record System 3.2. It has been declared as... Moderate Unreviewed
CVE-2025-1902 was published Mar 4, 2025
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical.... Moderate Unreviewed
CVE-2025-1903 was published Mar 4, 2025
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database