Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,344
Erlang
31
GitHub Actions
22
Go
2,112
Maven
5,000+
npm
3,767
NuGet
680
pip
3,453
Pub
12
RubyGems
892
Rust
888
Swift
38
Unreviewed advisories
All unreviewed
5,000+

28,087 advisories

Loading
MoinMoin Cross-site Scripting (XSS) vulnerability Moderate
CVE-2016-9119 was published for moin (pip) May 17, 2022
Cross-site scripting (XSS) vulnerability in the Users module in the Admin control panel in MyBB ... Moderate Unreviewed
CVE-2016-9421 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB... Moderate Unreviewed
CVE-2016-9404 was published May 17, 2022
An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a reflected Cross... Moderate Unreviewed
CVE-2017-5599 was published May 17, 2022
MoinMoin Cross-site Scripting (XSS) vulnerability Moderate
CVE-2016-7146 was published for moin (pip) May 17, 2022
MoinMoin Cross-site Scripting (XSS) vulnerability Moderate
CVE-2016-7148 was published for moin (pip) May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the file types table in b2evolution... Moderate Unreviewed
CVE-2017-5494 was published May 17, 2022
A vulnerability in the web-based management interface of Cisco NetFlow Generation Appliance could... Moderate Unreviewed
CVE-2016-9222 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in eshop-orders.php in the eShop plugin 6.3... Moderate Unreviewed
CVE-2016-0765 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in plugins/markdown_plugin/_markdown.plugin.php in... Moderate Unreviewed
CVE-2017-5553 was published May 17, 2022
Moodle Cross-site Scripting in assignment submission page Moderate
CVE-2017-2578 was published for moodle/moodle (Composer) May 17, 2022
TYPO3 Backend component Cross-site scripting (XSS) vulnerability Moderate
CVE-2016-4056 was published for typo3/cms (Composer) May 17, 2022
Cross-site scripting (XSS) vulnerability in valider_xml.php in SPIP 3.1.2 and earlier allows... Moderate Unreviewed
CVE-2016-7981 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in b2evolution 6.7.5 and earlier allows remote... Moderate Unreviewed
CVE-2016-7150 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in b2evolution 6.7.5 and earlier allows remote attackers... Moderate Unreviewed
CVE-2016-7149 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the user prompt function in GeniXCMS through 0.0.8... Moderate Unreviewed
CVE-2017-5515 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in the user forms in GeniXCMS through 0.0.8... Moderate Unreviewed
CVE-2017-5516 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.10.6 allows remote... Moderate Unreviewed
CVE-2016-6283 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in Reset Your Password module in Exponent CMS before 2.3... Moderate Unreviewed
CVE-2015-8667 was published May 17, 2022
Exponent CMS before 2.3.7 does not properly restrict the types of files that can be uploaded,... Moderate Unreviewed
CVE-2015-8684 was published May 17, 2022
The Gerrit configuration in the Openstack Puppet module for Gerrit (aka puppet-gerrit) improperly... Moderate Unreviewed
CVE-2016-5737 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 1.2.0 allows remote... Moderate Unreviewed
CVE-2016-4552 was published May 17, 2022
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Customer Voice Portal (CVP)... Moderate Unreviewed
CVE-2014-3325 was published May 17, 2022
Cross-site scripting (XSS) vulnerability in the WooCommerce plugin before 2.6.9 for WordPress... Moderate Unreviewed
CVE-2016-10112 was published May 17, 2022
Web2py versions 2.14.5 and below was affected by Reflected XSS vulnerability, which allows an... Moderate Unreviewed
CVE-2016-4807 was published May 17, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database