GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,083
Erlang
29
GitHub Actions
19
Go
1,909
Maven
5,000+
npm
3,644
NuGet
638
pip
3,260
Pub
10
RubyGems
869
Rust
820
Swift
35
Unreviewed advisories
All unreviewed
5,000+
1,221 advisories
Filter by severity
Stored XSS vulnerability in computer-queue-plugin Plugin
High
CVE-2020-2259
was published
for
jenkins.ci.plugins.computerqueue:computer-queue-plugin
(Maven)
May 24, 2022
Stored XSS vulnerability in Pipeline Maven Integration Plugin via unescaped display name
High
CVE-2020-2256
was published
for
org.jenkins-ci.plugins:pipeline-maven
(Maven)
May 24, 2022
Stored XSS vulnerability in android-lint Plugin
High
CVE-2020-2262
was published
for
org.jvnet.hudson.plugins:android-lint
(Maven)
May 24, 2022
Stored XSS vulnerability in Radiator View Plugin
High
CVE-2020-2263
was published
for
org.jenkins-ci.plugins:radiatorviewplugin
(Maven)
May 24, 2022
XSS vulnerability in Jenkins Build Failure Analyzer Plugin
High
CVE-2020-2244
was published
for
com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins Cadence vManager Plugin
High
CVE-2020-2243
was published
for
org.jenkins-ci.plugins:vmanager-plugin
(Maven)
May 24, 2022
Reflected XSS vulnerability in Jenkins JSGames Plugin
High
CVE-2020-2248
was published
for
org.jenkins-ci.plugins:jsgames
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins Valgrind Plugin
High
CVE-2020-2246
was published
for
org.jenkins-ci.plugins:valgrind
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins Git Parameter Plugin
High
CVE-2020-2238
was published
for
org.jenkins-ci.tools:git-parameter
(Maven)
May 24, 2022
Jenkins Cross-Site Scripting vulnerability in help icons
High
CVE-2020-2229
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Jenkins Cross-site Scripting vulnerability in project naming strategy
High
CVE-2020-2230
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins Yet Another Build Visualizer Plugin
High
CVE-2020-2236
was published
for
com.axis.system.jenkins.plugins.downstream:yet-another-build-visualizer
(Maven)
May 24, 2022
Stored XSS vulnerability in multiple axis builds tooltips in Jenkins Matrix Project Plugin
High
CVE-2020-2225
was published
for
org.jenkins-ci.plugins:matrix-project
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins Matrix Authorization Strategy Plugin
High
CVE-2020-2226
was published
for
org.jenkins-ci.plugins:matrix-auth
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins 'keep forever' badge icon
High
CVE-2020-2222
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins Deployer Framework Plugin
High
CVE-2020-2227
was published
for
org.jenkins-ci.plugins:deployer-framework
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins job build time trend
High
CVE-2020-2220
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins upstream cause
High
CVE-2020-2221
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Stored XSS vulnerability in Jenkins console links
High
CVE-2020-2223
was published
for
org.jenkins-ci.main:jenkins-core
(Maven)
May 24, 2022
Stored XSS vulnerability in single axis builds tooltips in Jenkins Matrix Project Plugin
High
CVE-2020-2224
was published
for
org.jenkins-ci.plugins:matrix-project
(Maven)
May 24, 2022
Pandora FMS 7.0 NG <= 746 suffers from Multiple XSS vulnerabilities in different browser views. A...
High
Unreviewed
CVE-2020-11749
was published
May 24, 2022
The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that...
High
Unreviewed
CVE-2019-6969
was published
May 24, 2022
cPanel before 70.0.23 allows code execution because "." is in @INC during a Perl syntax check of...
High
Unreviewed
CVE-2018-20911
was published
May 24, 2022
Stormshield Network Security 2.0.0 through 2.13.0 and 3.0.0 through 3.7.1 has self-XSS in the...
High
Unreviewed
CVE-2018-20850
was published
May 24, 2022
Advisto PEEL SHOPPING 9.0.0 has CSRF via en/achat/caddie_ajout.php and en/achat/caddie_affichage...
High
Unreviewed
CVE-2018-20848
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API