Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,279
Erlang
31
GitHub Actions
21
Go
2,056
Maven
5,000+
npm
3,740
NuGet
668
pip
3,421
Pub
12
RubyGems
891
Rust
873
Swift
36
Unreviewed advisories
All unreviewed
5,000+

10 advisories

Loading
Reverse Tabnapping in swagger-ui Moderate
GHSA-x9p2-fxq6-2m5f was published for swagger-ui (npm) Jun 20, 2019
Reverse Tabnabbing in quill Moderate
GHSA-588m-9qg5-35pq was published for quill (npm) Sep 3, 2020
Reverse Tabnabbing in showdown Low
GHSA-h6mq-3cj6-h738 was published for showdown (npm) Sep 3, 2020
tdunlap607
The External Links in New Window / New Tab WordPress plugin before 1.43 does not ensure window... Moderate Unreviewed
CVE-2022-1583 was published May 31, 2022
The Auto-hyperlink URLs WordPress plugin through 5.4.1 does not set rel="noopener noreferer" on... Moderate Unreviewed
CVE-2022-2600 was published Aug 23, 2022
text_helpers uses web link to untrusted target with window.opener access Moderate
CVE-2020-36624 was published for text_helpers (RubyGems) Dec 22, 2022
Twitter-Post-Fetcher vulnerable to Use of Web Link to Untrusted Target with window.opener Access Moderate
CVE-2018-25058 was published for twitter-fetcher-js (npm) Dec 29, 2022
A vulnerability was found in ualbertalib NEOSDiscovery 1.0.70 and classified as problematic. This... Moderate Unreviewed
CVE-2022-4927 was published Mar 5, 2023
A vulnerability was found in glb Meetup Tag Extension 0.1 on MediaWiki. It has been rated as... Low Unreviewed
CVE-2018-25089 was published Aug 28, 2023
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 uses a web link... Moderate Unreviewed
CVE-2024-39727 was published Dec 25, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database