Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

29,028 advisories

Loading
A vulnerability classified as problematic has been found in SourceCodester Royale Event... Moderate Unreviewed
CVE-2022-1102 was published Jan 8, 2023
A vulnerability has been found in ss15-this-is-sparta and classified as problematic. This... Moderate Unreviewed
CVE-2015-10028 was published Jan 7, 2023
Inline SVG vulnerable to Cross-site Scripting Moderate
CVE-2020-36644 was published for inline_svg (RubyGems) Jan 7, 2023
A vulnerability was found in ritterim definely. It has been classified as problematic. Affected... Moderate Unreviewed
CVE-2015-10021 was published Jan 7, 2023
A vulnerability, which was classified as problematic, has been found in foxoverflow... Moderate Unreviewed
CVE-2015-10019 was published Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0106 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0107 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0111 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0108 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0112 was published for github.com/usememos/memos (Go) Jan 7, 2023
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2023-0110 was published for github.com/usememos/memos (Go) Jan 7, 2023
An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur on the Classic UI login... Moderate Unreviewed
CVE-2022-45911 was published Jan 7, 2023
An issue was discovered in Zimbra Collaboration (ZCS) 9.0. XSS can occur via one of attributes in... Moderate Unreviewed
CVE-2022-45913 was published Jan 7, 2023
There is a SQL injection vulnerability in Some ZTE Mobile Internet products. Due to insufficient... Moderate Unreviewed
CVE-2022-39072 was published Jan 6, 2023
A reflected cross-site scripting (XSS) vulnerability in maccms10 v2022.1000.3032 allows attackers... Moderate Unreviewed
CVE-2022-44870 was published Jan 6, 2023
Nuxeo vulnerable to Reflected Cross-Site Scripting leading to Remote Code Execution Moderate
CVE-2021-32828 was published for org.nuxeo.ecm.platform:nuxeo-platform-oauth (Maven) Jan 6, 2023
A vulnerability was found in Wikimedia mediawiki-extensions-I18nTags and classified as... Moderate Unreviewed
CVE-2018-25065 was published Jan 5, 2023
A vulnerability has been found in snoyberg keter up to 1.8.1 and classified as problematic. This... Moderate Unreviewed
CVE-2022-4877 was published Jan 5, 2023
A vulnerability was found in WebDevStudios taxonomy-switcher Plugin up to 1.0.3. It has been... Moderate Unreviewed
CVE-2015-10013 was published Jan 5, 2023
@mattkrick/sanitize-svg vulnerable to Cross-Site Scripting (XSS) High
CVE-2023-22461 was published for @mattkrick/sanitize-svg (npm) Jan 5, 2023
lauritzh
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 is vulnerable to cross-site... Moderate Unreviewed
CVE-2022-34330 was published Jan 5, 2023
A vulnerability has been found in soerennb eXtplorer up to 2.1.12 and classified as problematic.... Moderate Unreviewed
CVE-2019-25096 was published Jan 5, 2023
Multiple vulnerabilities within the web-based management interface of Aruba EdgeConnect... Moderate Unreviewed
CVE-2022-43526 was published Jan 5, 2023
Multiple vulnerabilities within the web-based management interface of Aruba EdgeConnect... Moderate Unreviewed
CVE-2022-43525 was published Jan 5, 2023
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an... Moderate Unreviewed
CVE-2022-43532 was published Jan 5, 2023
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database