Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+

29,028 advisories

Loading
A vulnerability has been found in Yuna Scatari TBDev up to 2.1.17 and classified as problematic.... Moderate Unreviewed
CVE-2014-125027 was published Dec 31, 2022
keynote Cross-site Scripting vulnerability Moderate
CVE-2017-20159 was published for keynote (RubyGems) Dec 31, 2022
Yii2 FileAPI Widget vulnerable to Cross-site Scripting Moderate
CVE-2017-20158 was published for vova07/yii2-fileapi-widget (Composer) Dec 31, 2022
usememos/memos vulnerable to Cross-site Scripting Critical
CVE-2022-4866 was published for github.com/usememos/memos (Go) Dec 31, 2022
usememos/memos Cross-site Scripting vulnerability Critical
CVE-2022-4865 was published for github.com/usememos/memos (Go) Dec 31, 2022
A vulnerability was found in Sterc Google Analytics Dashboard for MODX up to 1.0.5. It has been... Moderate Unreviewed
CVE-2017-20155 was published Dec 31, 2022
A vulnerability has been found in aerouk imageserve and classified as problematic. Affected by... Moderate Unreviewed
CVE-2017-20153 was published Dec 30, 2022
A vulnerability was found in Chris92de AdminServ. It has been declared as problematic. This... Moderate Unreviewed
CVE-2020-36637 was published Dec 30, 2022
A vulnerability was found in Chris92de AdminServ. It has been rated as problematic. This issue... Moderate Unreviewed
CVE-2020-36638 was published Dec 30, 2022
A vulnerability, which was classified as problematic, has been found in Joget up to 7.0.33. This... Moderate Unreviewed
CVE-2022-4859 was published Dec 30, 2022
gotify/server vulnerable to Cross-site Scripting in the application image file upload Moderate
CVE-2022-46181 was published for github.com/gotify/server (Go) Dec 30, 2022
XSS in signing form in Reprise Software RLM License Administration v14.2BL4 allows remote... Moderate Unreviewed
CVE-2022-30519 was published Dec 30, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4841 was published for github.com/usememos/memos (Go) Dec 29, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4840 was published for github.com/usememos/memos (Go) Dec 29, 2022
usememos/memos vulnerable to stored Cross-site Scripting Moderate
CVE-2022-4839 was published for github.com/usememos/memos (Go) Dec 29, 2022
A vulnerability, which was classified as problematic, has been found in w3c Unicorn. This issue... Moderate Unreviewed
CVE-2021-4296 was published Dec 29, 2022
A vulnerability classified as problematic has been found in FlatPress. This affects an unknown... Moderate Unreviewed
CVE-2022-4820 was published Dec 28, 2022
A vulnerability was found in HotCRP. It has been rated as problematic. Affected by this issue is... Moderate Unreviewed
CVE-2022-4819 was published Dec 28, 2022
A vulnerability, which was classified as problematic, has been found in FlatPress. This issue... Moderate Unreviewed
CVE-2022-4822 was published Dec 28, 2022
A vulnerability classified as problematic was found in FlatPress. This vulnerability affects the... Moderate Unreviewed
CVE-2022-4821 was published Dec 28, 2022
Harvest Chosen vulnerable to Cross-site Scripting Moderate
CVE-2018-25050 was published for harvesthq/chosen (Composer) Dec 28, 2022
A vulnerability was found in FarCry Solr Pro Plugin up to 1.5.x. It has been declared as... Moderate Unreviewed
CVE-2018-25055 was published Dec 28, 2022
A vulnerability was found in shred cilla. It has been classified as problematic. Affected is an... Moderate Unreviewed
CVE-2018-25054 was published Dec 28, 2022
The Broken Link Checker WordPress plugin before 1.11.20 does not sanitise and escape some of its... Moderate Unreviewed
CVE-2022-3922 was published Dec 28, 2022
A vulnerability has been found in Catalyst-Plugin-Session up to 0.40 and classified as... Moderate Unreviewed
CVE-2018-25052 was published Dec 28, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database