GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,051
Erlang
29
GitHub Actions
19
Go
1,887
Maven
5,000+
npm
3,602
NuGet
638
pip
3,205
Pub
10
RubyGems
852
Rust
816
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
24,451 advisories
Filter by severity
A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as...
Moderate
Unreviewed
CVE-2024-8582
was published
Sep 9, 2024
A vulnerability was found in SourceCodester Online Bank Management System and Online Bank...
Moderate
Unreviewed
CVE-2024-8583
was published
Sep 9, 2024
A vulnerability was found in Gouniverse GoLang CMS 1.4.0. It has been declared as problematic....
Moderate
Unreviewed
CVE-2024-8572
was published
Sep 8, 2024
A vulnerability classified as problematic was found in code-projects Online Shop Store 1.0. This...
Moderate
Unreviewed
CVE-2024-8566
was published
Sep 8, 2024
A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic....
Moderate
Unreviewed
CVE-2024-8563
was published
Sep 7, 2024
A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected...
Moderate
Unreviewed
CVE-2024-8562
was published
Sep 7, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified...
Moderate
Unreviewed
CVE-2024-8554
was published
Sep 7, 2024
The Ninja Forms - File Uploads plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
High
Unreviewed
CVE-2024-1596
was published
Sep 7, 2024
The Preloader Plus – WordPress Loading Screen Plugin plugin for WordPress is vulnerable to Stored...
Moderate
Unreviewed
CVE-2024-6849
was published
Sep 7, 2024
A vulnerability, which was classified as problematic, was found in Wavelog up to 1.8.0. Affected...
Moderate
Unreviewed
CVE-2024-8521
was published
Sep 7, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Download Station. If...
High
Unreviewed
CVE-2024-38640
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating...
Moderate
Unreviewed
CVE-2023-50366
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. If exploited,...
Low
Unreviewed
CVE-2024-27125
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating...
High
Unreviewed
CVE-2024-21897
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Notes Station 3. If...
Moderate
Unreviewed
CVE-2024-27122
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited...
High
Unreviewed
CVE-2024-32762
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability has been reported to affect Notes Station 3. If...
Moderate
Unreviewed
CVE-2024-27126
was published
Sep 6, 2024
The Advanced Sermons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ...
Moderate
Unreviewed
CVE-2024-7599
was published
Sep 6, 2024
A cross-site scripting (XSS) vulnerability in the component \bean\Manager.java of Drug v1.0...
Moderate
Unreviewed
CVE-2024-44837
was published
Sep 6, 2024
The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2024-7611
was published
Sep 6, 2024
The WP AdCenter – Ad Manager & Adsense Ads plugin for WordPress is vulnerable to Stored Cross...
Moderate
Unreviewed
CVE-2024-8317
was published
Sep 6, 2024
Sourcecodehero Event Management System 1.0 allows Stored Cross-Site Scripting via parameters Full...
High
Unreviewed
CVE-2024-44728
was published
Sep 5, 2024
Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently...
Moderate
Unreviewed
CVE-2024-8472
was published
Sep 5, 2024
Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently...
Moderate
Unreviewed
CVE-2024-8471
was published
Sep 5, 2024
Cross-Site Scripting (XSS) vulnerability, whereby user-controlled input is not sufficiently...
Moderate
Unreviewed
CVE-2024-8473
was published
Sep 5, 2024
ProTip!
Advisories are also available from the
GraphQL API