GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+
1,311 advisories
Filter by severity
October System module has a Reflected XSS via X-October-Request-Handler Header
Low
CVE-2024-25637
was published
for
october/system
(Composer)
Jun 26, 2024
A vulnerability, which was classified as problematic, was found in ZKTeco ZKBio CVSecurity V5000...
Low
Unreviewed
CVE-2024-6344
was published
Jun 26, 2024
DSpace Cross Site Scripting (XSS) via a deposited HTML/XML document
Low
CVE-2024-38364
was published
for
org.dspace:dspace-server-webapp
(Maven)
Jun 25, 2024
A vulnerability classified as problematic was found in SourceCodester Service Provider Management...
Low
Unreviewed
CVE-2024-6267
was published
Jun 23, 2024
A vulnerability has been found in Zorlan SkyCaiji up to 2.8 and classified as problematic....
Low
Unreviewed
CVE-2024-6252
was published
Jun 22, 2024
In JetBrains Hub before 2024.2.34646 stored XSS via project description was possible
Low
Unreviewed
CVE-2024-38507
was published
Jun 18, 2024
A vulnerability, which was classified as problematic, has been found in PHPVibe 11.0.46. This...
Low
Unreviewed
CVE-2024-6082
was published
Jun 18, 2024
A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager...
Low
Unreviewed
CVE-2024-6059
was published
Jun 17, 2024
A stored cross site scripting vulnerability exists in Tenable Security Center where an...
Low
Unreviewed
CVE-2024-1891
was published
Jun 12, 2024
A vulnerability was found in Likeshop up to 2.5.7 and classified as problematic. This issue...
Low
Unreviewed
CVE-2024-5766
was published
Jun 8, 2024
A Cross-Site Scripting (XSS) vulnerability exists in mintplex-labs/anything-llm, affecting both...
Low
Unreviewed
CVE-2024-3166
was published
Jun 6, 2024
Arbitrary JavaScript execution due to using outdated libraries
Low
GHSA-4m3g-6r7g-jv4f
was published
for
gradio_pdf
(pip)
Jun 5, 2024
Umbraco Forms components vulnerable to Stored Cross-site Scripting
Low
CVE-2024-35239
was published
for
Umbraco.Forms
(NuGet)
May 28, 2024
vxe-table Cross-site Scripting vulnerability
Low
CVE-2023-1001
was published
for
vxe-table
(npm)
May 24, 2024
Silverstripe admin XSS Vulnerability via WYSIWYG editor
Low
GHSA-779c-7w4p-2c4g
was published
for
silverstripe/admin
(Composer)
May 22, 2024
A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0...
Low
Unreviewed
CVE-2024-5137
was published
May 20, 2024
A vulnerability classified as problematic has been found in PHPGurukul Directory Management...
Low
Unreviewed
CVE-2024-5136
was published
May 20, 2024
In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates...
Low
Unreviewed
CVE-2024-35300
was published
May 16, 2024
TYPO3 vulnerable to an HTML Injection in the History Module
Low
CVE-2024-34355
was published
for
typo3/cms-core
(Composer)
May 14, 2024
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as...
Low
Unreviewed
CVE-2024-4528
was published
May 6, 2024
A vulnerability was found in Techkshetra Info Solutions Savsoft Quiz 6.0 and classified as...
Low
Unreviewed
CVE-2024-4256
was published
Apr 27, 2024
A vulnerability, which was classified as problematic, has been found in slowlyo OwlAdmin up to 3...
Low
Unreviewed
CVE-2024-3766
was published
Apr 15, 2024
A vulnerability was found in Emlog Pro 2.2.10. It has been rated as problematic. This issue...
Low
Unreviewed
CVE-2024-3763
was published
Apr 15, 2024
A vulnerability was found in Emlog Pro 2.2.10. It has been declared as problematic. This...
Low
Unreviewed
CVE-2024-3762
was published
Apr 15, 2024
ProTip!
Advisories are also available from the
GraphQL API