Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
3,968
Erlang
29
GitHub Actions
16
Go
1,749
Maven
4,978
npm
3,509
NuGet
609
pip
3,084
Pub
10
RubyGems
832
Rust
782
Swift
34
Unreviewed advisories
All unreviewed
5,000+

1,311 advisories

Loading
October System module has a Reflected XSS via X-October-Request-Handler Header Low
CVE-2024-25637 was published for october/system (Composer) Jun 26, 2024
A vulnerability, which was classified as problematic, was found in ZKTeco ZKBio CVSecurity V5000... Low Unreviewed
CVE-2024-6344 was published Jun 26, 2024
DSpace Cross Site Scripting (XSS) via a deposited HTML/XML document Low
CVE-2024-38364 was published for org.dspace:dspace-server-webapp (Maven) Jun 25, 2024
Xib3rR4dAr
A vulnerability classified as problematic was found in SourceCodester Service Provider Management... Low Unreviewed
CVE-2024-6267 was published Jun 23, 2024
A vulnerability has been found in Zorlan SkyCaiji up to 2.8 and classified as problematic.... Low Unreviewed
CVE-2024-6252 was published Jun 22, 2024
In JetBrains Hub before 2024.2.34646 stored XSS via project description was possible Low Unreviewed
CVE-2024-38507 was published Jun 18, 2024
A vulnerability, which was classified as problematic, has been found in PHPVibe 11.0.46. This... Low Unreviewed
CVE-2024-6082 was published Jun 18, 2024
A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager... Low Unreviewed
CVE-2024-6059 was published Jun 17, 2024
A stored cross site scripting vulnerability exists in Tenable Security Center where an... Low Unreviewed
CVE-2024-1891 was published Jun 12, 2024
A vulnerability was found in Likeshop up to 2.5.7 and classified as problematic. This issue... Low Unreviewed
CVE-2024-5766 was published Jun 8, 2024
A Cross-Site Scripting (XSS) vulnerability exists in mintplex-labs/anything-llm, affecting both... Low Unreviewed
CVE-2024-3166 was published Jun 6, 2024
Cross site scripting in zenml Low
CVE-2024-2171 was published for zenml (pip) Jun 6, 2024
Arbitrary JavaScript execution due to using outdated libraries Low
GHSA-4m3g-6r7g-jv4f was published for gradio_pdf (pip) Jun 5, 2024
isacaya
Umbraco Forms components vulnerable to Stored Cross-site Scripting Low
CVE-2024-35239 was published for Umbraco.Forms (NuGet) May 28, 2024
RaphaelCSSilva
vxe-table Cross-site Scripting vulnerability Low
CVE-2023-1001 was published for vxe-table (npm) May 24, 2024
Silverstripe admin XSS Vulnerability via WYSIWYG editor Low
GHSA-779c-7w4p-2c4g was published for silverstripe/admin (Composer) May 22, 2024
A vulnerability classified as problematic was found in PHPGurukul Directory Management System 1.0... Low Unreviewed
CVE-2024-5137 was published May 20, 2024
A vulnerability classified as problematic has been found in PHPGurukul Directory Management... Low Unreviewed
CVE-2024-5136 was published May 20, 2024
In JetBrains TeamCity between 2024.03 and 2024.03.1 several stored XSS in the available updates... Low Unreviewed
CVE-2024-35300 was published May 16, 2024
TYPO3 vulnerable to an HTML Injection in the History Module Low
CVE-2024-34355 was published for typo3/cms-core (Composer) May 14, 2024
andreaskienast bnf
A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as... Low Unreviewed
CVE-2024-4528 was published May 6, 2024
A vulnerability was found in Techkshetra Info Solutions Savsoft Quiz 6.0 and classified as... Low Unreviewed
CVE-2024-4256 was published Apr 27, 2024
A vulnerability, which was classified as problematic, has been found in slowlyo OwlAdmin up to 3... Low Unreviewed
CVE-2024-3766 was published Apr 15, 2024
A vulnerability was found in Emlog Pro 2.2.10. It has been rated as problematic. This issue... Low Unreviewed
CVE-2024-3763 was published Apr 15, 2024
A vulnerability was found in Emlog Pro 2.2.10. It has been declared as problematic. This... Low Unreviewed
CVE-2024-3762 was published Apr 15, 2024
ProTip! Advisories are also available from the GraphQL API