GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
2 advisories
New API has an SQL LIKE Wildcard Injection DoS via Token Search
High
CVE-2026-25591
was published
for
github.com/QuantumNous/new-api
(Go)
Feb 23, 2026
WhoDB allows parameter injection in DB connection URIs leading to local file inclusion
High
CVE-2025-24787
was published
for
github.com/clidey/whodb/core
(Go)
Feb 6, 2025
ProTip!
Advisories are also available from the
GraphQL API