Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,747
Erlang
35
GitHub Actions
29
Go
2,321
Maven
5,000+
npm
3,955
NuGet
712
pip
3,736
Pub
12
RubyGems
921
Rust
972
Swift
38
Unreviewed advisories
All unreviewed
5,000+

34,938 advisories

Loading
An authenticated stored cross-site scripting (XSS) exists in the TP-Link TL-SG1016DE affecting... Moderate Unreviewed
CVE-2024-4224 was published Jul 15, 2024
Nopcommerce 4.70.1 is vulnerable to Cross Site Scripting (XSS) via the combined "AddProductReview... Moderate Unreviewed
CVE-2024-38963 was published Jul 10, 2024
Cross-site scripting (XSS) vulnerability in GUnet OpenEclass E-learning Platform version 3.15 and... Moderate Unreviewed
CVE-2024-33253 was published Jun 14, 2024
The Interactive Content WordPress plugin before 1.15.8 does not validate uploads which could... Moderate Unreviewed
CVE-2024-3111 was published Jun 27, 2024
The WP Chat App WordPress plugin before 3.6.5 does not sanitise and escape some of its settings,... Moderate Unreviewed
CVE-2024-4664 was published Jun 27, 2024
Cross-site scripting (XSS) vulnerability in search-appointment.php in the Admin Panel in... Moderate Unreviewed
CVE-2024-37798 was published Jun 17, 2024
Cross-site scripting (XSS) vulnerability in SilverSky E-mail service version 5.0.3126 allows... Moderate Unreviewed
CVE-2024-30848 was published Jun 20, 2024
Progress Sitefinity before 15.0.0 allows XSS by authenticated users via the content form in the... Moderate Unreviewed
CVE-2023-27636 was published Jun 16, 2024
Globitel KSA SpeechLog v8.1 was discovered to contain a stored cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-33819 was published May 14, 2024
A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0... High Unreviewed
CVE-2024-34231 was published May 14, 2024
A Stored Cross-site Scripting (XSS) vulnerability in the "Import of user role and title of user... High Unreviewed
CVE-2024-33526 was published May 21, 2024
LyLme_spage v1.9.5 is vulnerable to Cross Site Scripting (XSS) via admin/link.php. Moderate Unreviewed
CVE-2024-36674 was published Jun 3, 2024
Cross Site Scripting (XSS) in Beekeeper Studio 4.1.13 and earlier allows remote attackers to... Moderate Unreviewed
CVE-2024-23995 was published Apr 29, 2024
Cross Site Scripting vulnerability found in Simplcommerce v... High Unreviewed
CVE-2020-27478 was published Apr 30, 2024
Cross Site Scripting vulnerability in MajorDoMo before v.0662e5e allows an attacker to escalate... High Unreviewed
CVE-2024-33465 was published Apr 30, 2024
Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows a remote attacker to execute... Moderate Unreviewed
CVE-2024-33371 was published Apr 30, 2024
TOTOLINK N300RT V2.1.8-B20201030.1539 contains a Store Cross-site scripting (XSS) vulnerability... Moderate Unreviewed
CVE-2024-32332 was published Apr 18, 2024
Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.164B019 allows a remote... Moderate Unreviewed
CVE-2023-44855 was published Apr 12, 2024
Cross Site Scripting (XSS) vulnerability in BOSSCMS v3.10 allows attackers to run arbitrary code... High Unreviewed
CVE-2024-31609 was published Apr 26, 2024
Cross Site Scripting vulnerability in MiniCMS v.1.11 allows a remote attacker to run arbitrary... Moderate Unreviewed
CVE-2024-31741 was published Apr 27, 2024
A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers... Moderate Unreviewed
CVE-2024-31649 was published Apr 15, 2024
Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers... Moderate Unreviewed
CVE-2024-30880 was published Apr 11, 2024
TOTOLINK X2000R before V1.0.0-B20231213.1013 contains a Stored Cross-site scripting (XSS)... Moderate Unreviewed
CVE-2024-28402 was published Apr 11, 2024
Reflected Cross-Site Scripting (XSS) vulnerability in Discuz! version X3.4 20220811, allows... High Unreviewed
CVE-2024-30884 was published Apr 11, 2024
Cross Site Scripting vulnerability in Insurance Mangement System v.1.0.0 and before allows a... Moderate Unreviewed
CVE-2024-31065 was published Mar 28, 2024
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database