GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,536
Composer 4,189
Erlang 31
GitHub Actions 19
Go 1,985
Maven 5,160
npm 3,701
NuGet 657
pip 3,326
Pub 11
RubyGems 882
Rust 836
Swift 35

Unreviewed advisories

All unreviewed 233,420

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

25,727 advisories

Filter by severity

Sort by

Least recently updated

A XSS vulnerability exist in Pandora FMS version 756 and below, that allows an attacker to... Moderate Unreviewed

CVE-2021-46680 was published Aug 6, 2022

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Food... Moderate Unreviewed

CVE-2022-2683 was published Aug 6, 2022

A vulnerability has been found in SourceCodester Apartment Visitor Management System 1.0 and... Moderate Unreviewed

CVE-2022-2684 was published Aug 6, 2022

A vulnerability, which was classified as problematic, has been found in SourceCodester Alphaware... Moderate Unreviewed

CVE-2022-2682 was published Aug 6, 2022

Complete Online Job Search System v1.0 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed

CVE-2022-35163 was published Aug 6, 2022

Complete Online Job Search System v1.0 was discovered to contain a cross-site scripting (XSS)... Moderate Unreviewed

CVE-2022-35162 was published Aug 6, 2022

A vulnerability was found in SourceCodester Interview Management System 1.0 and classified as... Moderate Unreviewed

CVE-2022-2685 was published Aug 6, 2022

A vulnerability classified as problematic was found in SourceCodester Online Student Admission... Moderate Unreviewed

CVE-2022-2681 was published Aug 6, 2022

A vulnerability has been found in SourceCodester Garage Management System and classified as... Moderate Unreviewed

CVE-2022-2645 was published Aug 5, 2022

A vulnerability, which was classified as problematic, was found in SourceCodester Online... Moderate Unreviewed

CVE-2022-2646 was published Aug 5, 2022

BigTree CMS 4.4.16 was discovered to contain an arbitrary file upload vulnerability which allows... Moderate Unreviewed

CVE-2022-36197 was published Aug 4, 2022

A stored cross-site scripting (XSS) vulnerability in Mealie 1.0.0beta3 allows attackers to... Moderate Unreviewed

CVE-2022-34618 was published Aug 3, 2022

The iWay Service Manager Console component of TIBCO Software Inc.'s TIBCO iWay Service Manager... Moderate Unreviewed

CVE-2022-30571 was published Aug 3, 2022

The embedded neutralization of Script-Related HTML Tag, was by-passed in the case of some extra... Moderate Unreviewed

CVE-2022-1293 was published Aug 3, 2022

A stored XSS vulnerability was identified in GitHub Enterprise Server that allowed the injection... Moderate Unreviewed

CVE-2022-23733 was published Aug 3, 2022

A stored cross-site scripting (XSS) vulnerability in Mealie v0.5.5 allows attackers to execute... Moderate Unreviewed

CVE-2022-34619 was published Aug 3, 2022

In Progress WS_FTP Server prior to version 8.7.3, multiple reflected cross-site scripting (XSS)... Moderate Unreviewed

CVE-2022-36967 was published Aug 3, 2022

IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4... Moderate Unreviewed

CVE-2022-31774 was published Aug 2, 2022

IBM DataPower Gateway 10.0.2.0 through 10.0.4.0, 10.0.1.0 through 10.0.1.8, 10.5.0.0, and 2018.4... Moderate Unreviewed

CVE-2022-32750 was published Aug 2, 2022

Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in... Moderate Unreviewed

CVE-2022-36343 was published Aug 2, 2022

The Event Timeline WordPress plugin through 1.1.5 does not sanitize and escape Timeline Text,... Moderate Unreviewed

CVE-2022-1324 was published Aug 2, 2022

The Copyright Proof WordPress plugin through 4.16 does not sanitise and escape a parameter before... Moderate Unreviewed

CVE-2022-1906 was published Aug 2, 2022

The Microsoft Advertising Universal Event Tracking (UET) WordPress plugin before 1.0.4 does not... Moderate Unreviewed

CVE-2022-2170 was published Aug 2, 2022

The Advanced WordPress Reset WordPress plugin before 1.6 does not escape some generated URLs... Moderate Unreviewed

CVE-2022-2181 was published Aug 2, 2022

The GiveWP WordPress plugin before 2.21.3 does not properly sanitise and escape the currency... Moderate Unreviewed

CVE-2022-2215 was published Aug 2, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

25,727 advisories