GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,051
Erlang
29
GitHub Actions
19
Go
1,887
Maven
5,000+
npm
3,602
NuGet
638
pip
3,205
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+
27,653 advisories
Filter by severity
A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-8582
was published
Sep 9, 2024
A vulnerability was found in SourceCodester Online Bank Management System and Online Bank...
Moderate
Unreviewed
CVE-2024-8583
was published
Sep 9, 2024
A vulnerability was found in Gouniverse GoLang CMS 1.4.0. It has been declared as problematic....
Moderate
Unreviewed
CVE-2024-8572
was published
Sep 8, 2024
A vulnerability classified as problematic was found in code-projects Online Shop Store 1.0. This...
Moderate
Unreviewed
CVE-2024-8566
was published
Sep 8, 2024
Stored Cross-Site Scripting (XSS) vulnerability in GeoServer's REST Resources API
Moderate
CVE-2023-51445
was published
for
org.geoserver:gs-restconfig
(Maven)
Mar 20, 2024
A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-8563
was published
Sep 7, 2024
A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected...
Moderate
Unreviewed
CVE-2024-8562
was published
Sep 7, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified...
Moderate
Unreviewed
CVE-2024-8554
was published
Sep 7, 2024
The Ninja Forms - File Uploads plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
High
Unreviewed
CVE-2024-1596
was published
Sep 7, 2024
The Preloader Plus – WordPress Loading Screen Plugin plugin for WordPress is vulnerable to Stored...
Moderate
Unreviewed
CVE-2024-6849
was published
Sep 7, 2024
A vulnerability, which was classified as problematic, was found in Wavelog up to 1.8.0. Affected...
Moderate
Unreviewed
CVE-2024-8521
was published
Sep 7, 2024
A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a...
Critical
Unreviewed
CVE-2024-42009
was published
Aug 5, 2024
A Cross-Site Scripting vulnerability in rcmail_action_mail_get->run() in Roundcube through 1.5.7...
Critical
Unreviewed
CVE-2024-42008
was published
Aug 5, 2024
A cross-site scripting (XSS) vulnerability in the component /auth/AzureRedirect.php of...
Moderate
Unreviewed
CVE-2024-44796
was published
Aug 26, 2024
HTML injection in JupyterLite leading to DOM Clobbering
High
GHSA-gj55-2xf9-67rq
was published
for
jupyterlite-core
(pip)
Sep 6, 2024
Bootstrap Cross-Site Scripting (XSS) vulnerability
Moderate
CVE-2024-6531
was published
for
bootstrap
(RubyGems)
Jul 11, 2024
Learning with Texts (LWT) 2.0.3 is vulnerable to Cross Site Scripting (XSS). The application has...
Moderate
Unreviewed
CVE-2024-41572
was published
Aug 21, 2024
A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been declared as...
Moderate
Unreviewed
CVE-2024-6273
was published
Jun 24, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-50366
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating...
High
Unreviewed
CVE-2024-21897
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Notes Station 3. If...
Moderate
Unreviewed
CVE-2024-27122
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited,...
Low
Unreviewed
CVE-2024-27125
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Download Station. If...
High
Unreviewed
CVE-2024-38640
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited...
High
Unreviewed
CVE-2024-32762
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Notes Station 3. If...
Moderate
Unreviewed
CVE-2024-27126
was published
Sep 6, 2024
ProTip!
Advisories are also available from the
GraphQL API