GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 21,093
Composer 4,324
Erlang 31
GitHub Actions 21
Go 2,087
Maven 5,251
npm 3,751
NuGet 674
pip 3,437
Pub 12
RubyGems 892
Rust 881
Swift 37

Unreviewed advisories

All unreviewed 241,689

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

24,960 advisories

Filter by severity

Sort by

Least recently updated

Multiple stored cross-site scripting (XSS) vulnerabilities in GL.iNet GoodCloud IoT Device... Moderate Unreviewed

CVE-2022-42054 was published Oct 27, 2022

An error in the URL handler of the VIDEOJET multi 4000 may lead to a reflected cross site... Moderate Unreviewed

CVE-2022-40183 was published Oct 27, 2022

Incomplete filtering of JavaScript code in different configuration fields of the web based... Moderate Unreviewed

CVE-2022-40184 was published Oct 27, 2022

Yordam Library Information Document Automation product before version 19.02 has an... Moderate Unreviewed

CVE-2021-45476 was published Oct 27, 2022

A vulnerability classified as problematic was found in SourceCodester Online Medicine Ordering... Moderate Unreviewed

CVE-2022-3716 was published Oct 27, 2022

A vulnerability in the External RESTful Services (ERS) API of Cisco Identity Services Engine (ISE... Moderate Unreviewed

CVE-2022-20959 was published Oct 26, 2022

A vulnerability, which was classified as problematic, has been found in SourceCodester... Moderate Unreviewed

CVE-2022-3672 was published Oct 26, 2022

A vulnerability, which was classified as problematic, was found in SourceCodester Sanitization... Moderate Unreviewed

CVE-2022-3673 was published Oct 26, 2022

Reflected cross-site scripting (XSS) vulnerabilities in WithSecure through 2022-08-10) exists... Moderate Unreviewed

CVE-2022-38162 was published Oct 26, 2022

An issue was discovered in Joomla! 4.2.0 through 4.2.3. Inadequate filtering of potentially... Moderate Unreviewed

CVE-2022-27913 was published Oct 26, 2022

OX App Suite through 8.2 allows XSS via an attachment or OX Drive content when a client uses the... Moderate Unreviewed

CVE-2022-31468 was published Oct 26, 2022

The WP Humans.txt WordPress plugin through 1.0.6 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2022-3392 was published Oct 25, 2022

The Retain Live Chat WordPress plugin through 0.1 does not sanitise and escape some of its... Moderate Unreviewed

CVE-2022-3391 was published Oct 25, 2022

The Contact Bank WordPress plugin through 3.0.30 does not sanitise and escape some of its Form... Moderate Unreviewed

CVE-2022-3350 was published Oct 25, 2022

AlgoSec FireFlow Reflected Cross-Site-Scripting (RXSS): A malicious user injects JavaScript code... Moderate Unreviewed

CVE-2022-36783 was published Oct 25, 2022

A cross site scripting vulnerability exists in some map service configurations of ArcGIS Server... Moderate Unreviewed

CVE-2022-38200 was published Oct 25, 2022

Multiple stored cross-site scripting vulnerabilities in the web user interface of IPFire versions... Moderate Unreviewed

CVE-2022-36368 was published Oct 24, 2022

Cross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote... Moderate Unreviewed

CVE-2022-40690 was published Oct 24, 2022

PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS)... Moderate Unreviewed

CVE-2022-42205 was published Oct 21, 2022

PHPGurukul Hospital Management System In PHP V 4.0 is vulnerable to Cross Site Scripting (XSS)... Moderate Unreviewed

CVE-2022-42206 was published Oct 21, 2022

Auth. Stored Cross-Site Scripting (XSS) in Pop-Up Chop Chop plugin <= 2.1.7 on WordPress. Moderate Unreviewed

CVE-2022-41638 was published Oct 21, 2022

Auth. (admin+) Stored Cross-Site Scripting (XSS) in Fatcat Apps Analytics Cat plugin <= 1.0.9 on... Moderate Unreviewed

CVE-2022-40311 was published Oct 21, 2022

Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated... Moderate Unreviewed

CVE-2022-1059 was published Oct 21, 2022

Aethon TUG Home Base Server versions prior to version 24 are affected by un unauthenticated... Moderate Unreviewed

CVE-2022-27494 was published Oct 21, 2022

Simple Exam Reviewer Management System v1.0 is vulnerable to Stored Cross Site Scripting (XSS)... Moderate Unreviewed

CVE-2022-42200 was published Oct 20, 2022

Previous 1 2 … 396 397 398 399 400 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

24,960 advisories