Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,051
Erlang
29
GitHub Actions
19
Go
1,887
Maven
5,000+
npm
3,602
NuGet
638
pip
3,205
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+

27,653 advisories

Loading
A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as... Moderate Unreviewed
CVE-2024-8582 was published Sep 9, 2024
A vulnerability was found in SourceCodester Online Bank Management System and Online Bank... Moderate Unreviewed
CVE-2024-8583 was published Sep 9, 2024
A vulnerability was found in Gouniverse GoLang CMS 1.4.0. It has been declared as problematic.... Moderate Unreviewed
CVE-2024-8572 was published Sep 8, 2024
A vulnerability classified as problematic was found in code-projects Online Shop Store 1.0. This... Moderate Unreviewed
CVE-2024-8566 was published Sep 8, 2024
Stored Cross-Site Scripting (XSS) vulnerability in GeoServer's REST Resources API Moderate
CVE-2023-51445 was published for org.geoserver:gs-restconfig (Maven) Mar 20, 2024
thomsmith VertigoM
A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic.... Moderate Unreviewed
CVE-2024-8563 was published Sep 7, 2024
A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected... Moderate Unreviewed
CVE-2024-8562 was published Sep 7, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified... Moderate Unreviewed
CVE-2024-8554 was published Sep 7, 2024
The Ninja Forms - File Uploads plugin for WordPress is vulnerable to Stored Cross-Site Scripting... High Unreviewed
CVE-2024-1596 was published Sep 7, 2024
The Preloader Plus – WordPress Loading Screen Plugin plugin for WordPress is vulnerable to Stored... Moderate Unreviewed
CVE-2024-6849 was published Sep 7, 2024
A vulnerability, which was classified as problematic, was found in Wavelog up to 1.8.0. Affected... Moderate Unreviewed
CVE-2024-8521 was published Sep 7, 2024
A Cross-Site Scripting vulnerability in Roundcube through 1.5.7 and 1.6.x through 1.6.7 allows a... Critical Unreviewed
CVE-2024-42009 was published Aug 5, 2024
A Cross-Site Scripting vulnerability in rcmail_action_mail_get->run() in Roundcube through 1.5.7... Critical Unreviewed
CVE-2024-42008 was published Aug 5, 2024
A cross-site scripting (XSS) vulnerability in the component /auth/AzureRedirect.php of... Moderate Unreviewed
CVE-2024-44796 was published Aug 26, 2024
HTML injection in JupyterLite leading to DOM Clobbering High
GHSA-gj55-2xf9-67rq was published for jupyterlite-core (pip) Sep 6, 2024
ishmeals jackfromeast
Bootstrap Cross-Site Scripting (XSS) vulnerability Moderate
CVE-2024-6531 was published for bootstrap (RubyGems) Jul 11, 2024
alexeyNeklesa-idt metametadata
Learning with Texts (LWT) 2.0.3 is vulnerable to Cross Site Scripting (XSS). The application has... Moderate Unreviewed
CVE-2024-41572 was published Aug 21, 2024
A vulnerability was found in SourceCodester Clinic Queuing System 1.0. It has been declared as... Moderate Unreviewed
CVE-2024-6273 was published Jun 24, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating... Moderate Unreviewed
CVE-2023-50366 was published Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating... High Unreviewed
CVE-2024-21897 was published Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Notes Station 3. If... Moderate Unreviewed
CVE-2024-27122 was published Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited,... Low Unreviewed
CVE-2024-27125 was published Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Download Station. If... High Unreviewed
CVE-2024-38640 was published Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited... High Unreviewed
CVE-2024-32762 was published Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Notes Station 3. If... Moderate Unreviewed
CVE-2024-27126 was published Sep 6, 2024
ProTip! Advisories are also available from the GraphQL API