Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
40
GitHub Actions
38
Go
2,857
Maven
5,000+
npm
4,488
NuGet
780
pip
4,243
Pub
12
RubyGems
975
Rust
1,095
Swift
49
Unreviewed advisories
All unreviewed
5,000+

9 advisories

Loading
CoreShop Vulnerable to SQL Injection via Admin customer-company-modifier Moderate
CVE-2026-23959 was published for coreshop/core-shop (Composer) Jan 21, 2026
bypazs PlyNatwara
Credited to bypazs and PlyNatwara
CoreShop Vulnerable to SQL Injection via Admin Reports Moderate
CVE-2026-22242 was published for coreshop/core-shop (Composer) Jan 7, 2026
PlyNatwara bypazs
Credited to PlyNatwara and bypazs
In TIM BPM Suite/ TIM FLOW through 9.1.2 multiple Hibernate Query Language injection... Moderate Unreviewed
CVE-2025-67280 was published Jan 9, 2026
SQL Injection vulnerability in Apache StreamPark. This issue affects Apache StreamPark: from 2.1... High Unreviewed
CVE-2024-48988 was published Aug 22, 2025
SQL Injection vulnerability in opentext Flipper allows SQL Injection.  The vulnerability could... Low Unreviewed
CVE-2025-8052 was published Oct 20, 2025
SQL Injection: Hibernate vulnerability in TE Informatics Nova CMS allows SQL Injection.This issue... Moderate Unreviewed
CVE-2024-4658 was published Oct 10, 2024
FlowiseDB vulnerable to SQL Injection by authenticated users Moderate
GHSA-9c4c-g95m-c8cp was published for flowise (npm) Apr 7, 2025
Tribal1012
Credited to Tribal1012
The Eventer - WordPress Event & Booking Manager Plugin plugin for WordPress is vulnerable to SQL... High Unreviewed
CVE-2025-0959 was published Mar 7, 2025
pimcore/customer-data-framework vulnerable to SQL Injection Moderate
CVE-2024-11956 was published for pimcore/customer-management-framework-bundle (Composer) Jan 28, 2025
maeitsec
Credited to maeitsec
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database