GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 23,434
Composer 4,826
Erlang 36
GitHub Actions 32
Go 2,426
Maven 5,833
npm 4,058
NuGet 723
pip 3,848
Pub 12
RubyGems 934
Rust 1,006
Swift 38

Unreviewed advisories

All unreviewed 265,053

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

36,296 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary... Moderate Unreviewed

CVE-2022-34562 was published Apr 22, 2024

The Essential Addons for Elementor Pro plugin for WordPress is vulnerable to Stored Cross-Site... Moderate Unreviewed

CVE-2024-3645 was published Apr 22, 2024

A cross-site scripting (XSS) vulnerability in PHPFox v4.8.9 allows attackers to execute arbitrary... Moderate Unreviewed

CVE-2022-34561 was published Apr 22, 2024

Cross-Site Scripting (XSS) vulnerability in the Holded application. This vulnerability could... Moderate Unreviewed

CVE-2024-4026 was published Apr 22, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-32695 was published Apr 22, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-32696 was published Apr 22, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-32690 was published Apr 22, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... High Unreviewed

CVE-2024-32694 was published Apr 22, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-32697 was published Apr 22, 2024

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')... Moderate Unreviewed

CVE-2024-32698 was published Apr 22, 2024

A vulnerability, which was classified as problematic, has been found in l2c2technologies Koha up... Moderate Unreviewed

CVE-2018-25101 was published Apr 22, 2024

Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote... Moderate Unreviewed

CVE-2024-28722 was published Apr 22, 2024

A vulnerability classified as problematic was found in Thimo Grauerholz WP-Spreadplugin up to 3.8... Moderate Unreviewed

CVE-2015-10132 was published Apr 21, 2024

Apache Answer: XSS vulnerability when changing personal website Moderate

CVE-2024-29217 was published for github.com/apache/incubator-answer (Go) Apr 21, 2024

The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Media Slider, Drag... Moderate Unreviewed

CVE-2024-1730 was published Apr 20, 2024

Cross Site Scripting vulnerability in CmSimple v.5.15 allows a remote attacker to execute... Moderate Unreviewed

CVE-2024-32392 was published Apr 19, 2024

Cross Site Scripting vulnerability in MacCMS v.10 v.2024.1000.3000 allows a remote attacker to... High Unreviewed

CVE-2024-32391 was published Apr 19, 2024

A stored cross-site scripting (XSS) vulnerability in the component \affiche\admin\index.php of... Moderate Unreviewed

CVE-2024-32206 was published Apr 19, 2024

An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script. Low Unreviewed

CVE-2024-32409 was published Apr 19, 2024

Cross Site Scripting vulnerability in CSZ CMS v.1.3.0 allows a remote attacker to execute... Moderate Unreviewed

CVE-2024-27752 was published Apr 19, 2024

An XSS vulnerability has been found in Teimas Global's Teixo, version 1.42.42-stable. This... Moderate Unreviewed

CVE-2024-3654 was published Apr 19, 2024

The Genesis Blocks WordPress plugin before 3.1.3 does not properly escape data input provided to... Moderate Unreviewed

CVE-2024-2761 was published Apr 19, 2024

The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site... Moderate Unreviewed

CVE-2024-3731 was published Apr 19, 2024

The Media Library Folders plugin for WordPress is vulnerable to Reflected Cross-Site Scripting... Moderate Unreviewed

CVE-2024-3615 was published Apr 19, 2024

The ElementsKit Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the... Moderate Unreviewed

CVE-2024-3598 was published Apr 19, 2024

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

36,296 advisories