Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,356
Erlang
31
GitHub Actions
22
Go
2,120
Maven
5,000+
npm
3,782
NuGet
681
pip
3,460
Pub
12
RubyGems
893
Rust
891
Swift
38
Unreviewed advisories
All unreviewed
5,000+

1,377 advisories

Loading
There is a Cross-site Scripting vulnerability in ArcGIS Server in versions 10.8.1 – 11.1 that... Low Unreviewed
CVE-2023-25840 was published Jul 21, 2023
A vulnerability has been found in Bdtask G-Prescription Gynaecology & OBS Consultation Software 1... Low Unreviewed
CVE-2024-2276 was published Mar 8, 2024
A vulnerability, which was classified as problematic, was found in Bdtask G-Prescription... Low Unreviewed
CVE-2024-2275 was published Mar 8, 2024
A vulnerability, which was classified as problematic, has been found in Bdtask G-Prescription... Low Unreviewed
CVE-2024-2274 was published Mar 8, 2024
A vulnerability was found in EVE-NG 5.0.1-13 and classified as problematic. Affected by this... Low Unreviewed
CVE-2024-2391 was published Mar 12, 2024
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site... Low Unreviewed
CVE-2024-26051 was published Mar 18, 2024
** DISPUTED ** Bludit 3.10.0 allows Editor or Author roles to insert malicious JavaScript on the... Low Unreviewed
CVE-2020-8812 was published May 24, 2022
Cross-site Scripting in actionpack Low
CVE-2022-3704 was published for actionpack (RubyGems) Oct 27, 2022 withdrawn
rafaelfranca
A vulnerability was found in Bdtask Multi-Store Inventory Management System up to 20240320. It... Low Unreviewed
CVE-2024-2996 was published Mar 27, 2024
A vulnerability was found in Bdtask Multi-Store Inventory Management System up to 20240320. It... Low Unreviewed
CVE-2024-2997 was published Mar 27, 2024
A vulnerability was found in Bdtask Multi-Store Inventory Management System up to 20240320. It... Low Unreviewed
CVE-2024-2998 was published Mar 27, 2024
A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0. It has been... Low Unreviewed
CVE-2024-3091 was published Mar 30, 2024
A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Portal 1.0 and classified as... Low Unreviewed
CVE-2024-3090 was published Mar 30, 2024
A vulnerability classified as problematic was found in Zebra ZTC GK420d 1.0. This vulnerability... Low Unreviewed
CVE-2024-3125 was published Apr 1, 2024
RosarioSIS cross site scripting vulnerability Low
CVE-2024-3138 was published for francoisjacquet/rosariosis (Composer) Apr 2, 2024
Concrete CMS Stored XSS on the calendar color settings screen Low
CVE-2024-2753 was published for concrete5/concrete5 (Composer) Apr 3, 2024
Concrete CMS Cross-site Scripting (XSS) in the Advanced File Search Filter Low
CVE-2024-3178 was published for concrete5/concrete5 (Composer) Apr 3, 2024
Concrete CMS Stored XSS in the Custom Class page editing Low
CVE-2024-3179 was published for concrete5/concrete5 (Composer) Apr 3, 2024
Concrete CMS Stored XSS in the Search Field Low
CVE-2024-3181 was published for concrete5/concrete5 (Composer) Apr 3, 2024
A stored Cross-Site Scripting (XSS) vulnerability exists in the chat functionality of the... Low Unreviewed
CVE-2024-3570 was published Apr 10, 2024
A vulnerability was found in Emlog Pro 2.2.10. It has been declared as problematic. This... Low Unreviewed
CVE-2024-3762 was published Apr 15, 2024
A vulnerability was found in Emlog Pro 2.2.10. It has been rated as problematic. This issue... Low Unreviewed
CVE-2024-3763 was published Apr 15, 2024
A vulnerability, which was classified as problematic, has been found in slowlyo OwlAdmin up to 3... Low Unreviewed
CVE-2024-3766 was published Apr 15, 2024
A vulnerability has been found in Clavister E10 and E80 up to 20240323 and classified as... Low Unreviewed
CVE-2024-3141 was published Apr 2, 2024
TYPO3 cross-site scripting (XSS) Low
CVE-2015-5956 was published for typo3/cms (Composer) May 14, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database